An issue exists in Mattermost Server prior to 3.2.0. Attackers could read LDAP fields via injection.
mattermost mattermost server