Vulnerabilities

CVE-2025-22449

by Fred · 09/01/2025

Mattermost versions 9.11.x <= 9.11.5 fail to enforce invite permissions, which allows team admins, with no permission to invite users to their team, to invite users by updating the "allow_open_invite" field via making their team public. More information : https://mattermost.com/security-updates

Similar

Tags: Cybersecurity Alert