Vulnerabilities

CVE-2025-49221

by Fred · 11/08/2025

Mattermost Confluence Plugin version <1.5.0 fails to enforce authentication of the user to the Mattermost instance which allows unauthenticated attackers to access subscription details without via API call to GET subscription endpoint. More information : https://mattermost.com/security-updates

Similar

Tags: Cybersecurity Alert