Vulnerability Report: GO-2025-4190

  • CVE-2017-18877, GHSA-9x8x-w6g5-hx4w
  • Affects: github.com/mattermost/mattermost-server
  • Published: Dec 08, 2025

Mattermost Server is vulnerable to XSS attacks against an OAuth 2.0 allow/deny page in github.com/mattermost/mattermost-server

For detailed information about this vulnerability, visit https://github.com/advisories/GHSA-9x8x-w6g5-hx4w or https://nvd.nist.gov/vuln/detail/CVE-2017-18877.

Affected Packages

  • Path
    Versions
    Symbols

Aliases

References

Feedback

See anything missing or incorrect? Suggest an edit to this report.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.