VYPR

Go modules package

github.com/mattermost/mattermost-plugin-msteams-meetings

pkg:golang/github.com/mattermost/mattermost-plugin-msteams-meetings

Vulnerabilities (1)

  • CVE-2026-2325MedMay 18, 2026
    affected < 1.1.1-0.20260213105619-c5892dd169defixed 1.1.1-0.20260213105619-c5892dd169de

    Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13, 11.4.x <= 11.4.3 fail to limit the size of the request body on the start meeting API endpoint, which allows an authenticated attacker to cause resource exhaustion or denial of service via a crafted oversized HTTP POST req