CVE-2024-52871
17.11.2024, 04:15
In Flagsmith before 2.134.1, it is possible to bypass the ALLOW_REGISTRATION_WITHOUT_INVITE setting.Enginsight
| Vendor | Product | Version |
|---|---|---|
| flagsmith | flagsmith | 𝑥 < 2.134.1 |
𝑥
= Vulnerable software versions
In Flagsmith before 2.134.1, it is possible to bypass the ALLOW_REGISTRATION_WITHOUT_INVITE setting.Enginsight
| Vendor | Product | Version |
|---|---|---|
| flagsmith | flagsmith | 𝑥 < 2.134.1 |