Vulnerabilities > Mattermost > Mattermost Server > 3.9.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-19 | CVE-2017-18893 | Cross-site Scripting vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5. | 4.3 |
| 2020-06-19 | CVE-2017-18892 | Improper Encoding or Escaping of Output vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5. | 4.3 |
| 2020-06-19 | CVE-2017-18891 | Open Redirect vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5. | 5.8 |
| 2020-06-19 | CVE-2017-18890 | Improper Input Validation vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 4.3 |
| 2020-06-19 | CVE-2017-18889 | Improper Input Validation vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 4.0 |
| 2020-06-19 | CVE-2017-18888 | SQL Injection vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 7.5 |
| 2020-06-19 | CVE-2017-18887 | Information Exposure vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 5.0 |
| 2020-06-19 | CVE-2017-18886 | Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 6.5 |
| 2020-06-19 | CVE-2017-18885 | Improper Privilege Management vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 7.5 |
| 2020-06-19 | CVE-2017-18884 | Improper Privilege Management vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 5.5 |