Launch Week Day 1: Announcing Security Design Review
Start for Free
go

github.com/mattermost/mattermost-plugin-calls

View on go registry
5 Total advisories
5 Vulnerabilities
0 Malware

Vulnerabilities

HIGH 7.6
Go

CVE-2026-6347

Mattermost doesn't sanitize sensitive configuration fields in the Mattermost Calls plugin

UNKNOWN
Go

CVE-2025-62190

Mattermost has CSRF vulnerability via Calls Widget page in github.com/mattermost/mattermost-plugin-calls
UNKNOWN
Go

CVE-2025-12689

Mattermost fails to check Websocket request for proper UTF-8 format potentially crashing Calls plug-in in github.com/mattermost/mattermost-plugin-calls
MEDIUM 6.5
Go

CVE-2025-12689

Mattermost fails to check Websocket request for proper UTF-8 format potentially crashing Calls plug-in
MEDIUM 4.3
Go

CVE-2025-62190

Mattermost has CSRF vulnerability via Calls Widget page

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes