Vulnerabilities

CVE-2025-11776

by Fred · 14/11/2025

Mattermost versions <11 fail to properly restrict access to archived channel search API which allows guest users to discover archived public channels via the `/api/v4/teams/{team_id}/channels/search_archived` endpoint More information : https://mattermost.com/security-updates

Similar

Tags: Cybersecurity Alert