An issue was discovered in Mattermost Server before 4.1.0, 4.0.4, and 3.10.3. It allows attackers to discover team invite IDs via team API endpoints.
CPE | Name | Operator | Version |
---|---|---|---|
mattermost_server | ge | 4.0.0 | |
mattermost_server | lt | 4.0.4 | |
mattermost_server | lt | 3.10.3 |