CVE-2026-40168

Exploit

EPSS 0.37%
Veröffentlicht 10.04.2026 19:20:16
Zuletzt bearbeitet 14.04.2026 20:09:03
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Postiz has Server-Side Request Forgery via Redirect Bypass in /api/public/stream

Postiz is an AI social media scheduling tool. Prior to 2.21.5, the /api/public/stream endpoint is vulnerable to SSRF. Although the application validates the initially supplied URL and blocks direct private/internal hosts, it does not re-validate the final destination after HTTP redirects. As a result, an attacker can supply a public HTTPS URL that passes validation and then redirects the server-side request to an internal resource.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 6

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Gitroom ≫ Postiz Version < 2.21.5

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.37%	0.287

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security-advisories@github.com	8.2	3.9	4.2	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L

CWE-918 Server-Side Request Forgery (SSRF)

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.

https://github.com/gitroomhq/postiz-app/security/advisories/GHSA-34w8-5j2v-h6ww

Vendor Advisory

Exploit

Mitigation

https://github.com/gitroomhq/postiz-app/commit/30e8b777098157362769226d1b46d83ad616cb06

Patch

https://github.com/gitroomhq/postiz-app/releases/tag/v2.21.5

Product

Release Notes

https://nvd.nist.gov/vuln/detail/CVE-2026-40168

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-40168

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-40168

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-40168