RSS   Podatności dla 'Zulip server'   RSS

2022-03-02
 
CVE-2022-23656

CWE-79
 

 
Zulip is an open source team chat app. The `main` development branch of Zulip Server from June 2021 and later is vulnerable to a cross-site scripting vulnerability on the recent topics page. An attacker could maliciously craft a full name for their account and send messages to a topic with several participants; a victim who then opens an overflow tooltip including this full name on the recent topics page could trigger execution of JavaScript code controlled by the attacker. Users running a Zulip server from the main branch should upgrade from main (2022-03-01 or later) again to deploy this fix.

 
2021-04-15
 
CVE-2021-30487

CWE-732
 

 
In the topic moving API in Zulip Server 3.x before 3.4, organization administrators were able to move messages to streams in other organizations hosted by the same Zulip installation.

 
 
CVE-2021-30479

CWE-732
 

 
An issue was discovered in Zulip Server before 3.4. A bug in the implementation of the all_public_streams API feature resulted in guest users being able to receive message traffic to public streams that should have been only accessible to members of the organization.

 
 
CVE-2021-30478

CWE-732
 

 
An issue was discovered in Zulip Server before 3.4. A bug in the implementation of the can_forge_sender permission (previously is_api_super_user) resulted in users with this permission being able to send messages appearing as if sent by a system bot, including to other organizations hosted by the same Zulip installation.

 
 
CVE-2021-30477

CWE-732
 

 
An issue was discovered in Zulip Server before 3.4. A bug in the implementation of replies to messages sent by outgoing webhooks to private streams meant that an outgoing webhook bot could be used to send messages to private streams that the user was not intended to be able to send messages to.

 
2020-08-21
 
CVE-2020-15070

CWE-74
 

 
Zulip Server 2.x before 2.1.7 allows eval injection if a privileged attacker were able to write directly to the postgres database, and chose to write a crafted custom profile field value.

 
 
CVE-2020-14215

CWE-863
 

 
Zulip Server before 2.1.5 has Incorrect Access Control because 0198_preregistrationuser_invited_as adds the administrator role to invitations.

 
 
CVE-2020-14194

CWE-20
 

 
Zulip Server before 2.1.5 allows reverse tabnapping via a topic header link.

 
 
CVE-2020-12759

CWE-79
 

 
Zulip Server before 2.1.5 allows reflected XSS via the Dropbox webhook.

 
2020-04-20
 
CVE-2020-9445

CWE-79
 

 
Zulip Server before 2.1.3 allows XSS via the modal_link feature in the Markdown functionality.

 


Copyright 2024, cxsecurity.com

 

Back to Top