CVE-2016-11078

An issue was discovered in Mattermost Server before 3.0.0. It potentially allows attackers to obtain sensitive information (credential fields within config.json) via the System Console UI. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt