CVE-2019-20864
Mattermost Plugins (prior to 5.13.0) are affected by CVE-2019-20864. The GitHub plugin allows an attacker to attach their Mattermost account to another user’s GitHub account, enabling account association manipulation. Documented impact and scope: authenticated or unauthenticated exploitation is n...