CVE-2026-45709 | axllent mailpit 1.28.1/1.28.2/1.28.3/1.29.2 on GHSA private/loopback/IMDS server-side request forgery

Inserito da Angelo Barbosa | Mag 20, 2026 | CVE

A vulnerability was found in axllent mailpit 1.28.1/1.28.2/1.28.3/1.29.2 on GHSA. It has been rated as critical. The impacted element is an unknown function of the file private/loopback/IMDS. Performing a manipulation results in server-side request forgery.

This vulnerability was named CVE-2026-45709. The attack may be initiated remotely. There is no available exploit.

Upgrading the affected component is advised.

CVE-2026-45709 | axllent mailpit 1.28.1/1.28.2/1.28.3/1.29.2 on GHSA private/loopback/IMDS server-side request forgery

Post correlati

CVE-2024-34579 | Fuji Electric Alpha5 C5V File Parser stack-based overflow

CVE-2024-9561 | D-Link DIR-605L 2.13B01 BETA formSetWAN_Wizard51/formSetWAN_Wizard52 curTime buffer overflow

CVE-2024-10458 | Mozilla Thunderbird up to 131 permission

CVE-2024-8471 | PHPGurukul Job Portal 1.0 /jobportal/process.php JOBID/USERNAME cross site scripting