CVE-2026-22805 | Metabase up to 55.12/56.2/57.0 server-side request forgery (GHSA-2wgg-7r2p-cmqx)

A vulnerability was found in Metabase up to 55.12/56.2/57.0. It has been declared as critical. Affected by this issue is some unknown functionality. Executing a manipulation can lead to server-side request forgery.

This vulnerability appears as CVE-2026-22805. The attack may be performed from remote. There is no available exploit.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More