CVE-2024-52871 Information

Description

In Flagsmith before 2.134.1 it is possible to bypass the ALLOW_REGISTRATION_WITHOUT_INVITE setting.

Reference

https://github.com/Flagsmith/flagsmith/compare/v2.134.0…v2.134.1 https://github.com/Flagsmith/flagsmith/pull/4454