Sentry is vulnerable to improper access control. The vulnerability exists due to lack of validation in the invite link which allows an attacker to manipulate a cookie resulting in the ability to join an organization using multiple accounts with a single invite link.