HackerOne Disclosed Reports - 2026-01-21

Low
resolved

Spam & Clearance checks disabled with existing referenced Message-ID

Bug reported by northeastprince was disclosed at January 21, 2026, 3:13 pm   |   Improper Access Control - Generic

A vulnerability in the inbound email processing allowed crafted emails to bypass spam filtering and The Screener when they appeared to be in reply to an existing thread.