2 matches found
📄 Mailpit SMTP CRLF Injection
A CRLF injection vulnerability exists in Mailpit's SMTP server versions prior to 1.28.3. The vulnerability allows attackers to inject arbitrary SMTP headers by including carriage return characters in email addresses due to insufficient regex validation. Mailpit - SMTP CRLF Injection via Regex...
CVE-2026-23829
creationtimestamp| type| source ---|---|--- 2026-01-17 22:52:44+00:00| published-proof-of-concept| https://github.com/axllent/mailpit/security/advisories/GHSA-54wq-72mp-cq7c 2026-01-19 03:33:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mcqpi3fi7b2y 2026-01-20 20:10:26+00:00|...