cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-3613,https://securityvulnerability.io/vulnerability/CVE-2023-3613,Guest accounts invited and added to channels by Welcomebot plugin,"Mattermost WelcomeBot plugin fails to to validate the membership status when inviting or adding users to channels allowing guest accounts to be added or invited to channels by default. 

",Mattermost,Mattermost Plugins,3.5,LOW,0.000539999979082495,false,,false,false,false,,,false,false,,2023-07-17T16:15:00.000Z,0
CVE-2023-2797,https://securityvulnerability.io/vulnerability/CVE-2023-2797,Path traversal in GitHub plugin's code preview feature,"Mattermost fails to sanitize code permalinks, allowing an attacker to preview code from private repositories by posting a specially crafted permalink on a channel.


",Mattermost,Mattermost Github Plugin,6.5,MEDIUM,0.0006099999882280827,false,,false,false,false,,,false,false,,2023-06-16T10:15:00.000Z,0
CVE-2019-20864,https://securityvulnerability.io/vulnerability/CVE-2019-20864,Account Linking Vulnerability in Mattermost GitHub Plugin,"A security flaw in the Mattermost GitHub plugin, prior to version 5.13.0, allows attackers to link their Mattermost accounts with those of unsuspecting users on GitHub. This exploit could lead to unauthorized access and potentially misuse of the person’s GitHub account credentials, posing significant risks to user accounts and associated services.",Mattermost,Mattermost Plugins,7.5,HIGH,0.0008399999933317304,false,,false,false,false,,,false,false,,2020-06-19T14:19:22.000Z,0