CVE-2026-8025
published 2026-06-09CVE-2026-8025: Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in MOSK Information Technologies Ltd. CBS Platform allows…
PriorityP262critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.27%
19.2th percentile
Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in MOSK Information Technologies Ltd. CBS Platform allows SQL Injection.
This issue affects CBS Platform: through 09062026. NOTE: The vendor was contacted and it was learned that the product is not supported.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| github.com | axllent_mailpit | >= 0 < 1.28.1 | 1.28.1 |
| github.com | axllent_mailpit | >= 0 < 0.0.0-20260110031614 | 0.0.0-20260110031614 |
| github.com | axllent_mailpit | >= 1.2.6 < 1.28.2 | 1.28.2 |
| mosk_information_technologies_ltd | cbs_platform | <= 09062026 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in MOSK Information Technologies Ltd.
ghsa_unreviewed·2026-06-09
CVE-2026-8025 [CRITICAL] CWE-89 Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in MOSK Information Technologies Ltd.
Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in MOSK Information Technologies Ltd. CBS Platform allows SQL Injection.
This issue affects CBS Platform: through 09062026. NOTE: The vendor was contacted and it was learned that the product is not supported.
GHSA
Mailpit is vulnerable to Cross-Site WebSocket Hijacking (CSWSH) allowing unauthenticated access to emails
ghsa·2026-01-13
CVE-2026-22689 [MEDIUM] CWE-1385 Mailpit is vulnerable to Cross-Site WebSocket Hijacking (CSWSH) allowing unauthenticated access to emails
Mailpit is vulnerable to Cross-Site WebSocket Hijacking (CSWSH) allowing unauthenticated access to emails
**Summary**
The Mailpit WebSocket server is configured to accept connections from any origin. This lack of Origin header validation introduces a Cross-Site WebSocket Hijacking (CSWSH) vulnerability.
An attacker can host a malicious website that, when visited by a developer running Mailpit locally, establishes a WebSocket connection to the victim's Mailpit instance (default ws://localhost:8025). This allows the attacker to intercept sensitive data such as email contents, headers, and server statistics in real-time.
**Vulnerable Code**
The vulnerability exists in server/websockets/client.go where the CheckOrigin function is explicitly set to return true for all requests, bypassing sta
GHSA
Mailpit Proxy Endpoint has Server-Side Request Forgery (SSRF) vulnerability
ghsa·2026-01-06
CVE-2026-21859 [MEDIUM] CWE-918 Mailpit Proxy Endpoint has Server-Side Request Forgery (SSRF) vulnerability
Mailpit Proxy Endpoint has Server-Side Request Forgery (SSRF) vulnerability
## Summary
A Server-Side Request Forgery (SSRF) vulnerability exists in Mailpit's `/proxy` endpoint that allows attackers to make requests to internal network resources.
## Description
The `/proxy` endpoint allows requests to internal network resources. While it validates `http://` and `https://` schemes, it does not block internal IP addresses, allowing attackers to access internal services and APIs.
## Proof of Concept
### Basic SSRF Request
```
GET /proxy?url=http://127.0.0.1:8025/api/v1/info
```
This returns internal API data including database path and runtime statistics.
## Impact Assessment
### 1. Internal Network Scanning
Attacker can probe and discover internal services on the network.
### 2. In
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-06-09
Published