Welcome to the new Snyk Vulnerability Database experience!
We've upgraded the information available here with data you may have seen previously within Snyk Advisor. For a more comprehensive update, please refer to our product updates page (opens in a new tab) .

github.com/mattermost/.../v6 vulnerabilities

Licenses: (AGPL-3.0 OR Apache-2.0)

GitHub

47/100

securitySecurity issues found
popularityPopular
maintenanceInactive
communityActive

Maintenance

INACTIVE

Commit Frequency

Loading chart...

Open Issues: 650
Open PR: 315
New PRS: 1
Last Release: 3 years ago
Last Commit: 4 days ago

Further analysis of the maintenance status of github.com/mattermost/mattermost-server/v6 based on released Go modules versions cadence, the repository activity, and other data points determined that its maintenance is Inactive.

An important project maintenance signal to consider for github.com/mattermost/mattermost-server/v6 is that it hasn't seen any new versions released to Go modules in the past 12 months, and could be considered as a discontinued project, or that which receives low attention from its maintainers.

As a healthy sign for on-going project maintenance, we found that the GitHub repository had at least 1 pull request or issue interacted with by the community.

Popularity

POPULAR

Imported By: 0
GitHub Stars: 34.5k
Forks: 8.2k
Contributors: 0

Based on project statistics from the GitHub repository for the package github.com/mattermost/mattermost-server/v6, we found that it has been starred 34,468 times.

The popularity score for Golang modules is calculated based on the number of stars that the project has on GitHub as well as the number of imports by other modules.

Community

ACTIVE

Readme.md: No
Contributing.md: Yes
Code of Conduct: Yes
Contributors: 0
Funding: No
LICENSE: AGPL-3.0, Apache-2.0

This project has seen only 10 or less contributors.

How about a good first contribution to this project? It seems that github.com/mattermost/mattermost-server/v6 is missing a README file.

License

(AGPL-3.0 OR Apache-2.0)>=v0;

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the github.com/mattermost/mattermost-server/v6 package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Security

SECURITY ISSUES FOUND

Show only direct vulnerabilities in latest version

Vulnerability	Vulnerable Version
M Information Exposure	<7.8.14
M Uncontrolled Resource Consumption ('Resource Exhaustion')	<7.8.13
M Improper Access Control	<7.8.13
M Improper Access Control	<7.8.13
M URL Redirection to Untrusted Site ('Open Redirect')	<7.8.13
L Injection	*
M Uncontrolled Resource Consumption ('Resource Exhaustion')	<7.8.13
M Information Exposure	<7.8.13
M Information Exposure	<7.8.13
M Uncontrolled Resource Consumption ('Resource Exhaustion')	*
M Improper Check for Unusual or Exceptional Conditions	<7.8.12
M Incorrect Authorization	>=7.9.0 <7.9.2>=7.8.0 <7.8.3>=7.2.0 <7.7.4<7.1.8
M Missing Authorization	>=6.0.0 <7.1.6
M Cross-site Scripting (XSS)	<7.1.6>=7.2.0 <7.7.2>=7.8.0 <7.8.0

github.com/mattermost/.../v6 vulnerabilities

Package Health Score

Direct Vulnerabilities

Fix vulnerabilities automatically

Security