CVE-2026-22689 | axllent mailpit up to 1.28.1 missing origin validation in websockets (GHSA-524m-q5m7-79mm)

A vulnerability described as problematic has been identified in axllent mailpit up to 1.28.1. Impacted is an unknown function. The manipulation results in missing origin validation in websockets.

This vulnerability is reported as CVE-2026-22689. The attack can be launched remotely. No exploit exists.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More