[uchat.uberinternals.com] Mattermost doesn't check Origin in Websockets, which leads to the Critical Inforamation Leakage.

Disclosed: 2023-03-23 10:36:30 By kxyry To uber

Critical

Vulnerability Details

No vulnerability description provided or it is restricted.

Actions

View on HackerOne

Report Stats

Report ID: 201326
State: Closed
Substate: resolved
Upvotes: 43

Share this report