Rocket.Chat 漏洞列表
共找到 6 个与 Rocket.Chat 相关的漏洞
📅 加载漏洞趋势中...
-
CVE-2020-28208: Rocket.Chat <3.9.1 - Information Disclosure POC
Rocket.Chat through 3.9.1 is susceptible to information disclosure. An attacker can enumerate email addresses via the password reset function and thus potentially access sensitive information, modify data, and/or execute unauthorized operations. -
CVE-2021-22911: Rocket.Chat <=3.13 - NoSQL Injection POC
Rocket.Chat 3.11, 3.12 and 3.13 contains a NoSQL injection vulnerability which allows unauthenticated access to an API endpoint. An attacker can possibly obtain sensitive information from a database, modify data, and/or execute unauthorized administrative operations in the context of the affected site. -
CVE-2024-39713: Rocket.Chat - Server-Side Request Forgery (SSRF) POC
A Server-Side Request Forgery (SSRF) affects Rocket.Chat's Twilio webhook endpoint before version 6.10.1. -
CVE-2020-28208: Rocket.Chat <3.9.1 - Information Disclosure POC
Rocket.Chat through 3.9.1 is susceptible to information disclosure. An attacker can enumerate email addresses via the password reset function and thus potentially access sensitive information, modify data, and/or execute unauthorized operations. -
CVE-2021-22911: Rocket.Chat <=3.13 - NoSQL Injection POC
Rocket.Chat 3.11, 3.12 and 3.13 contains a NoSQL injection vulnerability which allows unauthenticated access to an API endpoint. An attacker can possibly obtain sensitive information from a database, modify data, and/or execute unauthorized administrative operations in the context of the affected site. -
CVE-2024-39713: Rocket.Chat - Server-Side Request Forgery (SSRF) POC
A Server-Side Request Forgery (SSRF) affects Rocket.Chat's Twilio webhook endpoint before version 6.10.1.