Mattermost Mobile Apps versions <=2.16.0 fail to protect...
Low severity
Unreviewed
Published
Jul 15, 2024
to the GitHub Advisory Database
Description
Published by the National Vulnerability Database
Jul 15, 2024
Published to the GitHub Advisory Database
Jul 15, 2024
Mattermost Mobile Apps versions <=2.16.0 fail to protect against abuse of a globally shared MathJax state which allows an attacker to change the contents of a LateX post, by creating another post with specific macro definitions.
References