CVE-2024-23319 Information

Description

Mattermost Jira Plugin fails to protect against logout CSRF allowing an attacker to post a specially crafted message that would disconnect a user’s Jira connection in Mattermost only by viewing the message.

Reference

https://mattermost.com/security-updates