pkg:Go/github.com/mattermost/mattermost-plugin-calls
5 total CVEsHIGH1MEDIUM4
✅ Check your installed version
All known vulnerabilities
HIGH7.6CVE-2026-6347Mattermost doesn't sanitize sensitive configuration fields in the Mattermost Calls plugin from 0, < 1.12.0-rc2
MEDIUM6.5CVE-2025-12689Mattermost fails to check Websocket request for proper UTF-8 format potentially crashing Calls plug-in in github.com/mattermost/mattermost-plugin-calls from 0, < 1.11.0
MEDIUM6.5CVE-2025-12689Mattermost fails to check Websocket request for proper UTF-8 format potentially crashing Calls plug-in in github.com/mattermost/mattermost-plugin-calls from 0, < 1.11.0
MEDIUM4.3Mattermost has CSRF vulnerability via Calls Widget page in github.com/mattermost/mattermost-plugin-calls
from 0, < 1.10.0
MEDIUM4.3Mattermost has CSRF vulnerability via Calls Widget page in github.com/mattermost/mattermost-plugin-calls
from 0, < 1.10.0