CVE-2017-18884
Mattermost Server versions before 4.3.0, 4.2.1, and 4.1.2 are affected by an authorization issue where an attacker can gain privileges by abusing a registered OAuth application with personal access tokens. The connected documents consistently describe this specific vector and the vulnerable compo...