CVE-2018-21252: An issue was discovered in Mattermost Server before 5.2, 5.1.1, 5.0.3, and 4.10.3. Attackers could use multiple e-mail addresses to bypass a domain-based…

medium4.3CVSS 3.1

AVNACLPRLUINSUCNILAN

An issue was discovered in Mattermost Server before 5.2, 5.1.1, 5.0.3, and 4.10.3. Attackers could use multiple e-mail addresses to bypass a domain-based policy for signups.

Affected

4 ranges

Vendor	Product	Version range	Fixed in
mattermost	mattermost_server	< 4.10.3	4.10.3
mattermost	mattermost_server	—	—
mattermost	mattermost_server	>= 5.0.0 < 5.0.3	5.0.3
mattermost	mattermost_server	>= 5.1.0 < 5.1.1	5.1.1