VIR Vulnerability Intelligence Relay

Package impact

golang Go / github.com/mattermost/mattermost-plugin-playbooks

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-6343 medium 4.3 4.3 17d ago Mattermost doesn't check public/private permissions
CVE-2026-4286 medium 4.3 4.3 17d ago Mattermost doesn't check if {{team_id}} was being changed when updating playbooks
CVE-2026-26304 unknown 3mo ago Mattermost fails to verify run_create permission for empty playbookId in github.com/mattermost/mattermost-plugin-playbooks
CVE-2025-35965 unknown 1y ago Mattermost Playbooks fails to validate the uniqueness and quantity of task actions in github.com/mattermost/mattermost-plugin-playbooks
CVE-2025-41395 unknown 1y ago Mattermost Playbooks fails to properly validate the props used by the RetrospectivePost custom post type in github.com/mattermost/mattermost-plugin-playbooks
CVE-2025-41423 unknown 1y ago Mattermost Playbooks fails to properly validate permissions in github.com/mattermost/mattermost-plugin-playbooks