VDB
GO-2025-3724
GO-2025-3724
PUBLISHED
Mattermost improperly allows team administrators to modify team invites in github.com/mattermost/mattermost-server
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| github.com | mattermost/mattermost-server | 9.0.0-rc1, 10.5.0-rc1, 10.7.0-rc1 |
| github.com | mattermost/mattermost/server/v8 | 0, 0 |
| github.com | mattermost/mattermost-server/v5 | 0, 0 |
| github.com | mattermost/mattermost-server/v6 | 0, 0 |
Timeline
- Jun 3, 2025 CVE Published
- Mar 3, 2026 CVE Updated
- May 1, 2026 Security Advisory