data/reports/GO-2025-3868.yaml

id: GO-2025-3868
modules:
    - module: github.com/mattermost/mattermost-plugin-confluence
      versions:
        - fixed: 1.5.0
      vulnerable_at: 1.5.0-rc3
summary: Mattermost Confluence Plugin has Missing Authorization vulnerability in github.com/mattermost/mattermost-plugin-confluence
cves:
    - CVE-2025-8285
ghsas:
    - GHSA-qjrx-j8wm-xf83
references:
    - advisory: https://github.com/advisories/GHSA-qjrx-j8wm-xf83
    - advisory: https://nvd.nist.gov/vuln/detail/CVE-2025-8285
    - web: https://mattermost.com/security-updates
source:
    id: GHSA-qjrx-j8wm-xf83
    created: 2025-08-15T17:53:39.517773236Z
review_status: UNREVIEWED