ByteOS Network

Vulnerability Details :

CVE-2026-48843

Assigner-mitre

Assigner Org ID-8254265b-2729-46b6-b9e3-3dfca2d5bfca

Published At-25 May, 2026 | 19:11

Updated At-26 May, 2026 | 12:50

Roundcube Webmail 1.6.x between 1.6.14 and 1.6.16,and 1.7.x before 1.7.1 has Insufficient Cascading Style Sheets (CSS) sanitization in HTML e-mail messages may lead to SSRF or Information Disclosure, e.g., if stylesheet links point to local network hosts. The issue stems from an insufficient fix for CVE-2026-35540.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:mitre

Assigner Org ID:8254265b-2729-46b6-b9e3-3dfca2d5bfca

Published At:25 May, 2026 | 19:11

Updated At:26 May, 2026 | 12:50

▼CVE Numbering Authority (CNA)

Affected Products

Vendor

Roundcube Webmail Project

Product

Webmail

Default Status

unaffected

Versions

Affected

From 1.6.14 before 1.6.16 (semver)
From 1.7.0 before 1.7.1 (semver)

Problem Types

Type	CWE ID	Description
CWE	CWE-918	CWE-918 Server-Side Request Forgery (SSRF)

Type: CWE

CWE ID: CWE-918

Description: CWE-918 Server-Side Request Forgery (SSRF)

Metrics

Version	Base score	Base severity	Vector
3.1	7.2	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

Version: 3.1

Base score: 7.2

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

References

Hyperlink	Resource
https://roundcube.net/news/2026/05/24/security-updates-1.6.16-and-1.7.1	N/A
https://github.com/roundcube/roundcubemail/releases/tag/1.7.1	N/A
https://github.com/roundcube/roundcubemail/commit/ab96c88bfd888866ec5e02190b19618db283923a	N/A
https://github.com/roundcube/roundcubemail/releases/tag/1.6.16	N/A
https://github.com/roundcube/roundcubemail/commit/cb3fc9041e91640ba9ba49ee7b2147c176ebf5a1	N/A

Hyperlink: https://roundcube.net/news/2026/05/24/security-updates-1.6.16-and-1.7.1

Resource: N/A

Hyperlink: https://github.com/roundcube/roundcubemail/releases/tag/1.7.1

Resource: N/A

Hyperlink: https://github.com/roundcube/roundcubemail/commit/ab96c88bfd888866ec5e02190b19618db283923a

Resource: N/A

Hyperlink: https://github.com/roundcube/roundcubemail/releases/tag/1.6.16

Resource: N/A

Hyperlink: https://github.com/roundcube/roundcubemail/commit/cb3fc9041e91640ba9ba49ee7b2147c176ebf5a1

Resource: N/A

▼Authorized Data Publishers (ADP)

CISA ADP Vulnrichment

Metrics Other Info

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:cve@mitre.org

Published At:25 May, 2026 | 20:16

Updated At:25 May, 2026 | 20:16

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	7.2	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

Type: Secondary

Version: 3.1

Base score: 7.2

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

Weaknesses

CWE ID	Type	Source
CWE-918	Primary	cve@mitre.org

CWE ID: CWE-918

Type: Primary

Source: cve@mitre.org

References

Hyperlink	Source	Resource
https://github.com/roundcube/roundcubemail/commit/ab96c88bfd888866ec5e02190b19618db283923a	cve@mitre.org	N/A
https://github.com/roundcube/roundcubemail/commit/cb3fc9041e91640ba9ba49ee7b2147c176ebf5a1	cve@mitre.org	N/A
https://github.com/roundcube/roundcubemail/releases/tag/1.6.16	cve@mitre.org	N/A
https://github.com/roundcube/roundcubemail/releases/tag/1.7.1	cve@mitre.org	N/A
https://roundcube.net/news/2026/05/24/security-updates-1.6.16-and-1.7.1	cve@mitre.org	N/A

Hyperlink: https://github.com/roundcube/roundcubemail/commit/ab96c88bfd888866ec5e02190b19618db283923a

Source: cve@mitre.org

Resource: N/A

Hyperlink: https://github.com/roundcube/roundcubemail/commit/cb3fc9041e91640ba9ba49ee7b2147c176ebf5a1

Source: cve@mitre.org

Resource: N/A

Hyperlink: https://github.com/roundcube/roundcubemail/releases/tag/1.6.16

Source: cve@mitre.org

Resource: N/A

Hyperlink: https://github.com/roundcube/roundcubemail/releases/tag/1.7.1

Source: cve@mitre.org

Resource: N/A

Hyperlink: https://roundcube.net/news/2026/05/24/security-updates-1.6.16-and-1.7.1

Source: cve@mitre.org

Resource: N/A

Similar CVEs

60Records found

CVE-2024-33250

Matching Score-4

Assigner-MITRE Corporation

View Details

Matching Score-4

Assigner-MITRE Corporation

CVSS Score-7.2||HIGH

EPSS-0.39% / 60.48%

7 Day CHG~0.00%

Published-13 May, 2024 | 15:46

Updated-15 Apr, 2026 | 00:35

An issue in Open-Source Technology Committee SRS real-time video server RS/4.0.268(Leo) and SRS/4.0.195(Leo) allows a remote attacker to execute arbitrary code via a crafted request.

Vendor-n/a ossrs

Product-n/a simple_realtime_server

CWE ID-CWE-918

Server-Side Request Forgery (SSRF)

CVE-2024-3047

Matching Score-4

Assigner-Wordfence

View Details

Matching Score-4

Assigner-Wordfence

CVSS Score-7.2||HIGH

EPSS-0.45% / 64.04%

7 Day CHG~0.00%

Published-02 May, 2024 | 16:51

Updated-08 Apr, 2026 | 17:18

PDF Invoices & Packing Slips for WooCommerce <= 3.8.0 - Unauthenticated Server-Side Request Forgery

The PDF Invoices & Packing Slips for WooCommerce plugin for WordPress is vulnerable to Server-Side Request Forgery in versions up to, and including, 3.8.0 via the transform() function. This can allow unauthenticated attackers to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services.

Vendor-wpovernight wpovernight

Product-woocommerce_pdf_invoices\&_packing_slips PDF Invoices & Packing Slips for WooCommerce

CWE ID-CWE-918

Server-Side Request Forgery (SSRF)

CVE-2022-45362

Matching Score-4

Assigner-Patchstack

View Details

Matching Score-4

Assigner-Patchstack

CVSS Score-7.2||HIGH

EPSS-32.93% / 96.97%

7 Day CHG~0.00%

Published-07 Dec, 2023 | 11:05

Updated-28 Apr, 2026 | 19:18

WordPress Paytm Payment Gateway Plugin <= 2.7.0 is vulnerable to Server Side Request Forgery (SSRF)

Server-Side Request Forgery (SSRF) vulnerability in Paytm Paytm Payment Gateway.This issue affects Paytm Payment Gateway: from n/a through 2.7.0.

Vendor-paytm Paytm

Product-payment_gateway Paytm Payment Gateway

CWE ID-CWE-918

Server-Side Request Forgery (SSRF)

CVE-2021-21311

Matching Score-4

Assigner-GitHub, Inc.

View Details

Matching Score-4

Assigner-GitHub, Inc.

CVSS Score-7.2||HIGH

EPSS-94.09% / 99.91%

7 Day CHG~0.00%

Published-11 Feb, 2021 | 20:55

Updated-24 Oct, 2025 | 14:48

Known KEV||Action Due Date - 2025-10-20||Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

SSRF in adminer

Adminer is an open-source database management in a single PHP file. In adminer from version 4.0.0 and before 4.7.9 there is a server-side request forgery vulnerability. Users of Adminer versions bundling all drivers (e.g. `adminer.php`) are affected. This is fixed in version 4.7.9.

Vendor-Adminer Adminer Debian GNU/Linux

Product-adminer debian_linux adminer Adminer

CWE ID-CWE-918

Server-Side Request Forgery (SSRF)

CVE-2024-20404

Matching Score-4

Assigner-Cisco Systems, Inc.

View Details

Matching Score-4

Assigner-Cisco Systems, Inc.

CVSS Score-7.2||HIGH

EPSS-81.13% / 99.18%

7 Day CHG~0.00%

Published-05 Jun, 2024 | 16:14

Updated-01 Aug, 2024 | 21:59

A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to conduct an SSRF attack on an affected system. This vulnerability is due to insufficient validation of user-supplied input for specific HTTP requests that are sent to an affected system. An attacker could exploit this vulnerability by sending a crafted HTTP request to the affected device. A successful exploit could allow the attacker to obtain limited sensitive information for services that are associated to the affected device.

Vendor-Cisco Systems, Inc.

Product-finesse Cisco Unified Contact Center Enterprise Cisco Packaged Contact Center Enterprise Cisco Unified Contact Center Express Cisco Finesse

CWE ID-CWE-918

Server-Side Request Forgery (SSRF)

CVE-2024-38728

Matching Score-4

Assigner-Patchstack

View Details

Matching Score-4

Assigner-Patchstack

CVSS Score-7.1||HIGH

EPSS-0.27% / 50.94%

7 Day CHG~0.00%

Published-22 Jul, 2024 | 10:22

Updated-28 Apr, 2026 | 16:10

WordPress Seraphinite Post .DOCX Source plugin <= 2.16.9 - Server Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery (SSRF) vulnerability in Seraphinite Solutions Seraphinite Post .DOCX Source.This issue affects Seraphinite Post .DOCX Source: from n/a through 2.16.9.

Vendor-s-sols Seraphinite Solutions s-sols

Product-seraphinite_post_.docx_source Seraphinite Post .DOCX Source seraphinite_post_.docx_source

CWE ID-CWE-918

Server-Side Request Forgery (SSRF)

CVE-2024-37942

Matching Score-4

Assigner-Patchstack

View Details

Matching Score-4

Assigner-Patchstack

CVSS Score-7.2||HIGH

EPSS-0.34% / 56.51%

7 Day CHG~0.00%

Published-22 Jul, 2024 | 10:28

Updated-28 Apr, 2026 | 16:10

WordPress BerqWP plugin <= 1.7.5 - Unauthenticated Non-Blind Server Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery (SSRF) vulnerability in Berqier Ltd BerqWP.This issue affects BerqWP: from n/a through 1.7.5.

Vendor-berqier Berqier Ltd berqier_ltd

Product-berqwp BerqWP berqwp

CWE ID-CWE-918

Server-Side Request Forgery (SSRF)

CVE-2024-31288

Matching Score-4

Assigner-Patchstack

View Details

Matching Score-4

Assigner-Patchstack

CVSS Score-7.2||HIGH

EPSS-0.13% / 31.93%

7 Day CHG~0.00%

Published-07 Apr, 2024 | 17:18

Updated-28 Apr, 2026 | 16:09

WordPress RapidLoad plugin <= 2.2.11 - Server Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery (SSRF) vulnerability in RapidLoad RapidLoad Power-Up for Autoptimize.This issue affects RapidLoad Power-Up for Autoptimize: from n/a through 2.2.11.

Vendor-RapidLoad rapidload

Product-RapidLoad Power-Up for Autoptimize power-up_for_autoptimize

CWE ID-CWE-918

Server-Side Request Forgery (SSRF)

CVE-2025-49418

Matching Score-4

Assigner-Patchstack

View Details

Matching Score-4

Assigner-Patchstack

CVSS Score-7.2||HIGH

EPSS-0.22% / 44.36%

7 Day CHG~0.00%

Published-04 Jul, 2025 | 11:17

Updated-28 Apr, 2026 | 16:13

WordPress Allmart plugin <= 1.0.0 - Server Side Request Forgery (SSRF) Vulnerability

Server-Side Request Forgery (SSRF) vulnerability in TeconceTheme Allmart allmart-core allows Server Side Request Forgery.This issue affects Allmart: from n/a through <= 1.0.0.

Vendor-TeconceTheme

Product-Allmart

CWE ID-CWE-918

Server-Side Request Forgery (SSRF)

CVE-2025-40595

Matching Score-4

Assigner-SonicWall, Inc.

View Details

Matching Score-4

Assigner-SonicWall, Inc.

CVSS Score-7.2||HIGH

EPSS-0.09% / 25.38%

7 Day CHG~0.00%

Published-14 May, 2025 | 16:35

Updated-14 May, 2025 | 21:15

A Server-side request forgery (SSRF) vulnerability has been identified in the SMA1000 Appliance Work Place interface. By using an encoded URL, a remote unauthenticated attacker could potentially cause the appliance to make requests to unintended location.

Vendor-SonicWall Inc.

Product-SMA1000

CWE ID-CWE-918

Server-Side Request Forgery (SSRF)

CVE-2026-48843

Credits

Vendors

Products

Metrics (CVSS)

Weaknesses

Attack Patterns

Solution/Workaround

References

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

Stakeholder-Specific Vulnerability Categorization (SSVC)

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History

Similar CVEs