Improper neutralization of input during web page generation (‘cross-site scripting’) vulnerability in Basamak Information Technology Consulting and Organization Trade Ltd. Co. DernekWeb allows Stored XSS. This issue affects DernekWeb: through 30122025. More information :...
Mattermost versions 11.5.x
Mattermost versions 11.5.x
Mattermost Desktop App versions
Mattermost versions 11.5.x
Mattermost versions 11.5.x
Mattermost versions 11.5.x
Mattermost versions 11.5.x
Mattermost versions 11.5.x
Mattermost versions 11.5.x
Mattermost Plugins versions
Mattermost Desktop App versions
Mattermost versions 11.5.x
Net::Statsd::Lite versions through 0.10.0 for Perl allowed metric injections. The values from the set_add method were not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics. Note...