6.9 Medium
AI Score
Confidence
Low
0.0005 Low
EPSS
Percentile
17.0%
Mattermost version 8.1.6 and earlier fails to sanitize channel mention data in posts, which allows an attacker to inject markup in the web client.
mattermost.com/security-updates