CVE-2025-11794 | Mattermost up to 10.5.11/10.11.3/10.12.0 member information disclosure

November 14, 2025 Yanac

A vulnerability was found in Mattermost up to 10.5.11/10.11.3/10.12.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /api/v4/users/{user_id}/email/verify/member. The manipulation leads to information disclosure.

This vulnerability is referenced as CVE-2025-11794. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More