Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from a cross-site request forgery vulnerability that stems from the Jira plugin’s inability to prevent logout CSRF, which can be exploited by an attacker to post a specially crafted message that disconnects a user from Jira in Mattermost just by viewing the message.