CVE-2017-18903
CVE-2017-18903 affects Mattermost Server versions prior to 4.0.0, 3.10.2, and 3.9.2. The issue is a CSRF vulnerability that can occur if CORS is enabled. The connected documents confirm the affected versions and the CSRF nature, but do not provide exploitation details or concrete mitigation steps.