CVE-2026-23845

Опубликовано: 19 янв. 2026

Источник: nvd

CVSS3: 5.8

CVSS3: 7.5

EPSS Низкий

Описание

Mailpit is an email testing tool and API for developers. Versions prior to 1.28.3 are vulnerable to Server-Side Request Forgery (SSRF) via HTML Check CSS Download. The HTML Check feature (/api/v1/message/{ID}/html-check) is designed to analyze HTML emails for compatibility. During this process, the inlineRemoteCSS() function automatically downloads CSS files from external <link rel="stylesheet" href="..."> tags to inline them for testing. Version 1.28.3 fixes the issue.

Ссылки

https://github.com/axllent/mailpit/commit/1679a0aba592ebc8487a996d37fea8318c984dfe
Patch
https://github.com/axllent/mailpit/releases/tag/v1.28.3
Product
Release Notes
https://github.com/axllent/mailpit/security/advisories/GHSA-6jxm-fv7w-rw5j
Exploit
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:axllent:mailpit:*:*:*:*:*:*:*:*

Версия до 1.28.3 (исключая)

EPSS

Процентиль: 12%

0.00039

Низкий

5.8 Medium

CVSS3

7.5 High

CVSS3

Дефекты

CWE-918

Связанные уязвимости

GHSA-6jxm-fv7w-rw5j

CVSS3: 5.8

github

18 дней назад

Mailpit has a Server-Side Request Forgery (SSRF) via HTML Check API

EPSS

Процентиль: 12%

0.00039

Низкий

5.8 Medium

CVSS3

7.5 High

CVSS3

Дефекты

CWE-918