3 matches found
CVE-2025-49136
creationtimestamp| type| source ---|---|--- 2025-06-09 16:56:04+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17703 2025-06-09 19:58:41+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lr762ttnys2e 2025-10-08 21:09:17+00:00| seen|...
CVE-2025-49136 listmonk's Sprig template Injection vulnerability leads to reading of Environment Variable for low privilege user
listmonk is a standalone, self-hosted, newsletter and mailing list manager. Starting in version 4.0.0 and prior to version 5.0.2, the env and expandenv template functions which is enabled by default in Sprig enables capturing of env variables on host. While this may not be a problem on single-use...
CVE-2025-49136
CVE-2025-49136 affects Listmonk before v5.0.2 where Sprig template functions env and expandenv are enabled by default, enabling non-super-admin users (with campaign/template permissions) to read host environment variables via campaign previews. Public reports and the connected Metasploit auxiliar...