Timestamp Manipulation Vulnerability in Rocket.Chat Allows Message Order Manipulation

Timestamp Manipulation Vulnerability in Rocket.Chat Allows Message Order Manipulation

CVE-2023-28317 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

A vulnerability has been discovered in Rocket.Chat, where editing messages can change the original timestamp, causing the UI to display messages in an incorrect order.

Learn more about our Web Application Penetration Testing UK.