[HIGH] Flarum mishandles invalidation of user email tokens

PKSA-7pzs-74vs-17zc CVE-2019-11514 GHSA-g6w5-439m-jhwv

Affected package: flarum/flarum

Affected version: <0.1.0-beta.8

Reported by:
GitHub