Mattermost Server exposes team creator's e-mail address to other members

GHSA-35c4-5qfp-wxj6 · CVE-2017-18887 · GO-2025-4199

Published May 24, 2022 · Modified Dec 15, 2025

Description

An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. It discloses the team creator's e-mail address to members.

Ready to move

Free, no credit card | First findings in minutes