3 matches found
CVE-2017-6199
A remote attacker could bypass the Sandstorm organization restriction before build 0.203 via a comma in an email-address field...
CVE-2017-6199
A remote attacker could bypass the Sandstorm organization restriction before build 0.203 via a comma in an email-address field...
CVE-2017-6199
Sandstorm (build prior to 0.203) is affected by CVE-2017-6199 due to insufficient validation of an email-address field, allowing remote attackers to bypass the Sandstorm organization restriction. The issue is tied to version pre-0.203; upgrading to build 0.203 or later is the documented remediati...