CVE-2023-7114 Information

Description

Mattermost version 2.10.0 and earlier fails to sanitize deeplink paths which allows an attacker to perform CSRF attacks against the server.

Reference

https://mattermost.com/security-updates