Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1110 CNY

100%
Buy Us a Coffee

Mattermost — Vulnerabilities & Security Advisories 387

All 387 CVE vulnerabilities found in Mattermost, with AI-generated Chinese analysis, references, and POCs.

This page presents a comprehensive aggregation of security vulnerabilities and weaknesses associated with the Mattermost open-source platform developed by Mattermost, Inc. It specifically focuses on identifying, classifying, and cataloging security flaws that may impact the confidentiality, integrity, or availability of self-hosted or cloud-deployed instances of this communication software. The content collected here spans a wide historical range of disclosed issues, from early releases to the most recent updates. By consolidating data from various authoritative sources, including Common Weakness Enumerations (CWE), Common Vulnerabilities and Exposures (CVE), and vendor security advisories, this resource provides a holistic view of the security posture of Mattermost over time. The aggregation includes critical, high, medium, and low-severity findings that have been publicly disclosed, ensuring that users have access to a complete timeline of known defects and configuration errors. Visitors to this page can effectively track a vendor's advisory history to understand how quickly patches are deployed for newly discovered threats. Additionally, users can gain a deeper understanding of specific weakness classes that frequently affect this type of application, such as cross-site scripting or improper access control. The resource also allows for a thorough examination of a product's vulnerability history, enabling teams to assess long-term stability and prioritize remediation efforts based on past trends. This structured approach supports informed decision-making for system administrators and security professionals responsible for maintaining secure communication environments.

Vendor: Mattermost

CVE IDTitleCVSSSeverityPublished
CVE-2026-4915 Server panic via outgoing webhook responses CWE-754 6.5 Medium2026-05-25
CVE-2026-28735 GitHub OAuth Scope Validation CWE-863 5.4 Medium2026-05-22
CVE-2026-4635 Persistent notification timing attack causing server denial of service CWE-362 6.5 Medium2026-05-22
CVE-2026-3473 Improper file ownership validation in the Boards API allows unauthorised file access CWE-639 5.9 Medium2026-05-22
CVE-2026-4646 Insufficient input validation in GitHub plugin API causes denial of service CWE-1287 4.3 Medium2026-05-22
CVE-2026-3636 Sanitize team member data returned by API CWE-200 4.3 Medium2026-05-22
CVE-2026-5740 Unauthenticated WebSocket binary frame causes denial of service in Mattermost Server CWE-789 7.5 High2026-05-22
CVE-2026-5308 Missing request body size limits on Zoom plugin HTTP endpoints CWE-400 4.9 Medium2026-05-22
CVE-2026-5755 Denial of service via crafted TIFF file upload CWE-400 6.5 Medium2026-05-22
CVE-2026-22880 Mobile SSO authentication flow allows credential theft via malicious server CWE-352 6.1 Medium2026-05-21
CVE-2026-4858 Path traversal in integration action URL leading to arbitrary API execution via system admin’s auth token. CWE-22 8.0 High2026-05-21
CVE-2026-4055 Insufficient permission validation on cross-team playbook run creation CWE-863 4.3 Medium2026-05-21
CVE-2026-3471 Opening a window with {{javascript:alert()}} as URL causes crash in the Mattermost Desktop App CWE-939 6.5 Medium2026-05-18
CVE-2026-4643 Calling window.close() from server-side content causes crash in the Mattermost Desktop App CWE-754 3.5 Low2026-05-18
CVE-2026-6333 SSRF via Host Header Spoofing in Custom Slash Commands CWE-918 3.5 Low2026-05-18
CVE-2026-6345 Prevent password disclosure and force reset during Slack import CWE-522 6.5 Medium2026-05-18
CVE-2026-6346 Sensitive credentials exposed in plaintext in Mattermost support packets CWE-200 8.7 High2026-05-18
CVE-2026-28732 Slash command trigger-word update allowed command hijacking CWE-863 4.3 Medium2026-05-18
CVE-2026-6343 Mattermost Playbooks Plugin fails to enforce view permissions in list endpoints, allowing unauthorized access to public playbooks CWE-863 4.3 Medium2026-05-18
CVE-2026-6347 Mattermost Calls plugin exposes TURN server credentials in plaintext in support packets CWE-200 7.6 High2026-05-18
CVE-2026-5163 Missing authorization check in AI message rewrite endpoint allows access to private thread content CWE-862 6.5 Medium2026-05-18
CVE-2026-3117 Instance and webhook GitLab plugin commands were able to be run by non-admin users CWE-862 6.5 Medium2026-05-18
CVE-2026-4286 Playbooks Plugin fails to validate team transfers, allowing unauthorized removal of member access via playbook update CWE-863 3.1 Low2026-05-18
CVE-2026-6339 Missing request origin validation on burn-on-read reveal endpoint CWE-346 4.3 Medium2026-05-18
CVE-2026-6340 Memory Exhaustion via Malicious 7zip File Upload CWE-789 4.3 Medium2026-05-18
CVE-2026-6341 Incomplete group locking implementation CWE-863 4.3 Medium2026-05-18
CVE-2026-6342 Group prefix matching bypass for subscriptions CWE-863 4.3 Medium2026-05-18
CVE-2026-3495 Unescaped variables during error page composition CWE-79 3.8 Low2026-05-18
CVE-2026-4273 Insufficient token rotation validation in remote cluster invite confirmation CWE-863 3.7 Low2026-05-18
CVE-2026-3637 Mattermost fails to enforce create_post permission when editing posts CWE-862 4.3 Medium2026-05-18

All 387 known CVE vulnerabilities affecting Mattermost with full Chinese analysis, references, and POCs where available.