Github.Com Knadh Listmonk vulnerabilities
4 known vulnerabilities affecting github.com/knadh_listmonk.
Total CVEs
4
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2025-49136P3CRITICALPoC≥ 4.0.0, < 5.0.22025-06-09
CVE-2025-49136 [CRITICAL] CWE-1336 listmonk's Sprig template Injection vulnerability leads to reading of Environment Variable for low privilege user
listmonk's Sprig template Injection vulnerability leads to reading of Environment Variable for low privilege user
### Summary
The `env` and `expandenv` template functions which is enabled by default in [Sprig](https://masterminds.github.io/sprig/) enables capturing of env variables on the host. While this may not be a problem on single-user (super
ghsaosv
CVE-2026-34828P3HIGH≥ 1.1.1-0.20241028090858-319053dd7a90, < 1.1.1-0.20260329113754-1b5e8d38c7782026-04-01
CVE-2026-34828 [HIGH] CWE-613 listmonk's active sessions remain valid after password reset and password change
listmonk's active sessions remain valid after password reset and password change
### Summary
A session management vulnerability allows previously issued authenticated sessions to remain valid after sensitive account security changes, specifically password reset and password change. As a result, an attacker who has already obtained a valid session cookie can retain access to the account
ghsaosv
CVE-2026-21483P4MEDIUM≥ 1.1.1, < 6.0.0≥ 0, < 1.1.1-0.20251231125615-74dc5a01cfbb2026-01-02
CVE-2026-21483 [MEDIUM] CWE-79 listmonk Vulnerable to Stored XSS Leading to Admin Account Takeover
listmonk Vulnerable to Stored XSS Leading to Admin Account Takeover
## Security Advisory: Stored XSS Leading to Admin Account Takeover
**Affected Versions:** ≤ 5.1.0
**Vulnerability Type:** CWE-79: Stored Cross-Site Scripting
---
## Summary
A lower-privileged user with campaign management permissions can inject malicious JavaScript into campaigns or templates. When a higher-privileged user (Su
ghsaosv
CVE-2025-58430P4HIGH≥ 0, ≤ 1.1.02025-09-09
CVE-2025-58430 [HIGH] CWE-352 listmonk: CSRF to XSS Chain can Lead to Admin Account Takeover
listmonk: CSRF to XSS Chain can Lead to Admin Account Takeover
### Summary
Cross-Site Request Forgery (CSRF) is an attack that forces an end user to execute unwanted actions on a web application in which they’re currently authenticated. With a little help of social engineering (such as sending a link via email or chat), an attacker may trick the users of a web application into executing actions of the
ghsaosv