An issue was discovered in Mattermost Server before 3.1.0. It allows XSS via theme color-code values.