CVE-2026-55187: CWE-918: Server-Side Request Forgery (SSRF) in axllent mailpit
CVE-2026-55187 is a Server-Side Request Forgery (SSRF) vulnerability in axllent's Mailpit email testing tool prior to version 1.30.2. The issue arises because the internal deny-list for IP addresses…
Read the full articleYou might also wanna read
Comprehensive Guide to SSRF Testing: From URL Parameters to Cloud Metadata Exploitation
The Ultimate SSRF Testing Bible: How Hackers Pivot from URL Parameters to Cloud Metadata in 2026 + Video - "Undercode Testing": Monitor hack
undercodetesting.com·27d agoReSSRF: An Automated SSRF Discovery Tool Using OAST-Powered Parameter Fuzzing
ReSSRF: Unleashing Next-Gen Automated SSRF Discovery with OAST-Powered Parameter Fuzzing + Video - "Undercode Testing": Monitor hackers like
undercodetesting.com·27d ago
WAF - WAF Release - 2025-09-29
This week highlights four important vendor- and component-specific issues: an authentication bypass in SimpleHelp (CVE-2024-57727), an infor

WAF - WAF Release - 2025-09-22
This week emphasizes two critical vendor-specific vulnerabilities: a full elevation-of-privilege in Microsoft Azure Networking (CVE-2025-549

WAF - WAF Release - 2025-06-16
This week’s roundup highlights multiple critical vulnerabilities across popular web frameworks, plugins, and enterprise platforms. The focus

Workers - SSRF vulnerability in @opennextjs/cloudflare proactively mitigated for all Cloudflare customers
Mitigations have been put in place for all existing and future deployments of sites with the Cloudflare adapter for Open Next in response to

Comments
Sign in to join the conversation.
No comments yet. Be the first.