CVE-2025-9821 | Mautic up to 4.4.16/5.2.7/6.0.4 SummaryUsers server-side request forgery (GHSA-hj6f-7hp7-xg69)

Inserito da Angelo Barbosa | Set 3, 2025 | CVE

A vulnerability labeled as critical has been found in Mautic up to 4.4.16/5.2.7/6.0.4. The impacted element is an unknown function of the component SummaryUsers. Executing manipulation can lead to server-side request forgery.

This vulnerability appears as CVE-2025-9821. The attack may be performed from remote. There is no available exploit.

The affected component should be upgraded.

CVE-2025-9821 | Mautic up to 4.4.16/5.2.7/6.0.4 SummaryUsers server-side request forgery (GHSA-hj6f-7hp7-xg69)

Post correlati

CVE-2025-53368 | StarCitizenTools mediawiki-skins-Citizen up to 3.3.x cross site scripting

CVE-2024-6926 | Viral Signup Plugin up to 2.1 on WordPress AJAX Action sql injection

CVE-2024-11342 | Skt NURCaptcha Plugin up to 3.5.0 on WordPress cross site scripting

CVE-2024-28739 | Koha ILS up to 23.05 format Privilege Escalation