github.com/mattermost/.../api4

License

>=v0.0.0-20230613002302-62a3ee8adcb5 <v3.5.1-0.20161123161237-48533aa48387+incompatible;
>=v3.5.1+incompatible;
>=v3.5.1-0.20161123161237-48533aa48387+incompatible <v3.5.1+incompatible;
>=v8.0.0-20230613002302-62a3ee8adcb5 <v8.0.0-20230613135810-be590a1f0c0f;
>=v8.0.0-20230622213803-fece5d5dd276 <v8.0.0-20230623102452-fe8d66bc9853;
>=v8.0.0-20230705221755-44a95d9f6901 <v8.0.0-20230706170314-82b3b67e632d;
>=v8.0.0-20230429093631-aac4f2337933 <v8.0.0-20230613002302-62a3ee8adcb5;
>=v8.0.0-20230613135810-be590a1f0c0f <v8.0.0-20230622213803-fece5d5dd276;
>=v8.0.0-20230623102452-fe8d66bc9853 <v8.0.0-20230705221755-44a95d9f6901;

Direct Vulnerabilities

Known vulnerabilities in the github.com/mattermost/mattermost/server/v8/channels/api4 package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • M
Missing Authorization

>=10.11.0 <10.11.20>=11.7.0 <11.7.3>=11.8.0-rc1 <11.8.0-rc5
  • M
Missing Authorization

>=10.11.0 <10.11.20>=11.6.0 <11.6.5>=11.7.0 <11.7.3>=11.8.0-rc1 <11.8.0-rc5
  • M
Authentication Bypass by Primary Weakness

>=11.6.0 <11.6.5>=11.7.0 <11.7.3>=11.8.0-rc1 <11.8.0-rc4
  • M
Authorization Bypass Through User-Controlled Key

>=10.11.0 <10.11.20>=11.6.0 <11.6.5>=11.7.0 <11.7.3>=11.8.0-rc1 <11.8.0-rc5
  • H
Incorrect Authorization

>=10.11.0 <10.11.20>=11.6.0 <11.6.5>=11.7.0 <11.7.3>=11.8.0-rc1 <11.8.0-rc5
  • M
Incorrect Authorization

>=10.11.0 <10.11.18>=11.7.0 <11.7.1
  • M
Missing Authorization

>=10.11.0 <10.11.16>=11.5.0 <11.5.5>=11.6.0 <11.6.2>=11.7.0-rc1 <11.7.0-rc4
  • H
Incorrect Authorization

>=10.11.0 <10.11.16>=11.5.0 <11.5.5>=11.6.0 <11.6.2>=11.7.0-rc1 <11.7.0-rc4
  • M
Incorrect Authorization

>=10.11.0 <10.11.18>=11.7.0 <11.7.1
  • H
Insertion of Sensitive Information Into Sent Data

>=10.11.0 <10.11.17>=11.5.0 <11.5.5>=11.6.0 <11.6.2>=11.7.0-rc1 <11.7.0-rc3
  • M
Incorrect Authorization

>=10.11.0-rc1 <10.11.15-rc1>=11.4.0-rc1 <11.4.5>=11.5.0-rc1 <11.5.3>=11.6.0-rc1 <11.6.1-rc1
  • L
Incorrect Authorization

<8.0.0-20250820115038-ff30b84049f0
  • M
Missing Authorization

<8.0.0-20250822090405-e8c7e7d0252b
  • M
Incorrect Authorization

<9.11.9-rc1>=10.3.0-rc1 <10.3.4>=10.4.0-rc1 <10.4.3
  • M
Missing Authentication for Critical Function

<9.11.9-rc1>=10.3.0-rc1 <10.3.4-rc1>=10.4.0-rc1 <10.4.3-rc1
  • L
Incorrect Authorization

>=9.11.0 <9.11.9-rc1
  • M
Incorrect Authorization

<9.11.9>=10.3.0-rc1 <10.3.4>=10.4.0-rc1 <10.4.3>=10.5.0-rc1 <10.5.1
  • L
Unverified Ownership

<9.5.6-rc2>=9.6.0-rc1 <9.6.3-rc2>=9.7.0-rc1 <9.7.5-rc2>=9.8.0-rc1 <9.8.1-rc2
  • M
Incorrect Authorization

<9.5.6-rc1>=9.6.0-rc1 <9.8.1-rc1
  • M
Information Exposure Through an Error Message

>=8.1.0 <8.1.13>=9.5.0 <9.5.4>=9.7.0 <9.7.2
  • L
Improper Authorization

<8.1.12-rc1>=9.0.0-rc1 <9.5.3-rc1
  • L
Improper Authorization

<8.1.12-rc1>=9.0.0-rc1 <9.5.3-rc1>=9.6.0-rc1 <9.6.1-rc1
  • L
Allocation of Resources Without Limits or Throttling

<8.1.12-rc3>=9.5.0-rc1 <9.5.3>=9.6.0-rc1 <9.6.1