CVE-2026-6333 – SSRF via Host Header Spoofing in Custom Slash Commands

CVE ID :CVE-2026-6333

Published : May 18, 2026, 8:41 a.m. | 26 minutes ago

Description :Mattermost versions 11.5.x
Severity: 3.5 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-7498 – Stored XSS in Basamak Informatics’ DernekWeb

CVE-2026-3471 – Opening a window with {{javascript:alert()}} as URL causes crash in the Mattermost Desktop App

CVE-2026-4643 – Calling window.close() from server-side content causes crash in the Mattermost Desktop App

CVE-2026-6345 – Prevent password disclosure and force reset during Slack import