Vulnerabilities

CVE-2025-54478

by Fred · 11/08/2025

Mattermost Confluence Plugin version <1.5.0 fails to enforce authentication of the user to the Mattermost instance which allows unauthenticated attackers to edit channel subscriptions via API call to the edit channel subscription endpoint. More information : https://mattermost.com/security-updates

Similar

Tags: Cybersecurity Alert