CVE-2016-4427 admin 3년 ago CVE-2016-4427 In zulip before 1.3.12, deactivated users could access messages if SSO was enabled. Source: CVE-2016-4427