pkg:Go/github.com/mattermost/mattermost-plugin-calls
5 total CVEsHIGH1MEDIUM4
✅ Check your installed version
All known vulnerabilities
- HIGH7.6CVE-2026-6347Mattermost doesn't sanitize sensitive configuration fields in the Mattermost Calls pluginfrom 0, < 1.12.0-rc2
- MEDIUM6.5CVE-2025-12689Mattermost fails to check Websocket request for proper UTF-8 format potentially crashing Calls plug-in in github.com/mattermost/mattermost-plugin-callsfrom 0, < 1.11.0
- MEDIUM6.5CVE-2025-12689Mattermost fails to check Websocket request for proper UTF-8 format potentially crashing Calls plug-in in github.com/mattermost/mattermost-plugin-callsfrom 0, < 1.11.0
- MEDIUM4.3CVE-2025-62190Mattermost has CSRF vulnerability via Calls Widget page in github.com/mattermost/mattermost-plugin-callsfrom 0, < 1.10.0
- MEDIUM4.3CVE-2025-62190Mattermost has CSRF vulnerability via Calls Widget page in github.com/mattermost/mattermost-plugin-callsfrom 0, < 1.10.0