CVE-2023-4478 — Mattermost fails to restrict which parameters' values it takes from the request during signup allowing an attacker to register users as inactive, thus blocking them from later accessing Mattermost — CVE Database · The Intelligence Room