Security Advisory

CVE-2026-9557

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-05-29 09:38:40

Last updated 2026-05-29 10:51:10

Assigner Mautic

State PUBLISHED

Description

A Server-Side Request Forgery (SSRF) vulnerability exists in Mautics Focus component. Due to insufficient validation of user-supplied URLs, an authenticated user can trigger outbound HTTP requests from the hosting server, enabling internal network reconnaissance or forcing requests to arbitrary internal or external destinations.

← Browse all CVEs View on cve.org ↗