VYPR
Medium severity6.4NVD Advisory· Published May 29, 2026· Updated May 29, 2026

CVE-2026-9557

CVE-2026-9557

Description

A Server-Side Request Forgery (SSRF) vulnerability exists in Mautic's Focus component. Due to insufficient validation of user-supplied URLs, an authenticated user can trigger outbound HTTP requests from the hosting server, enabling internal network reconnaissance or forcing requests to arbitrary internal or external destinations.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Mautic/Mauticinferred2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.