CVE-2023-5968 Information

Description

Mattermost fails to properly sanitize the user object when updating the username resulting in the password hash being included in the response body. 

Reference

https://mattermost.com/security-updates