Vulnerabilities > Mattermost > Mattermost Server > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-27 | CVE-2023-27265 | Exposure of Resource to Wrong Sphere vulnerability in Mattermost Server Mattermost fails to honor the ShowEmailAddress setting when constructing a response to the "Regenerate Invite Id" API endpoint, allowing an attacker with team admin privileges to learn the team owner's email address in the response. | 2.7 |
| 2020-06-19 | CVE-2016-11077 | Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 3.0.0. | 2.7 |
| 2020-06-19 | CVE-2018-21249 | Unspecified vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.3.0. | 3.7 |
| 2020-06-19 | CVE-2018-21260 | Information Exposure vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.8.1, 4.7.4, and 4.6.3. | 2.7 |