Mattermost fails to sanitize code permalinks, allowing an attacker to preview code from private repositories by posting a specially crafted permalink on a channel. CreditsJuho NurminenReferenceshttps://mattermost.com/security-updates/
