Mastodon · Mastodon · CVE-2026-41259
**Name of the Vulnerable Software and Affected Versions**
Mastodon versions prior to 4.5.9
Mastodon versions prior to 4.4.16
Mastodon versions prior to 4.3.22
**Description**
Mastodon allows restricting new user sign-up based on e-mail domain names and performs basic validation on e-mail addresses, but it fails to restrict characters that some mailing servers interpret differently.
**Recommendations**
Update to version 4.5.9
Update to version 4.4.16
Update to version 4.3.22