CVE-2026-45709 in mailpitinfo

Prediction

by VulDB Data Team • 05/20/2026

A vulnerability was found in axllent mailpit 1.28.1/1.28.2/1.28.3/1.29.2 on GHSA. The impacted element is an unknown function of the file private/loopback/IMDS. Performing a manipulation results in server-side request forgery. The attack may be initiated remotely. Upgrading to version 1.30.0 is sufficient to resolve this issue. Upgrading the affected component is advised.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Moderation

accepted

Entry

VDB-364834

CPE

ready

CWE

CWE-918 (confirmed)

CVSS

7.3 (VulDB)

EPSS

0.00000

KEV

Activities

very low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-45709
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-45709
CVE Details	https://www.cvedetails.com/cve/CVE-2026-45709/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!