An input validation error vulnerability exists in Mattermost 6.0 and prior versions of Mattermost, an open source collaboration platform from Mattermost, Inc. The vulnerability stems from the program’s failure to properly validate email addresses during registration. An attacker could exploit the vulnerability to trick users into registering with an attacker-controlled email address via a specially crafted invitation token.
CPE | Name | Operator | Version |
---|---|---|---|
mattermost mattermost | le | 6.0 |