CVE-2025-9821

Published: Sep 3, 2025

Modified: Sep 3, 2025

PUBLISHED

CVSS v3.1

2.7

LOW

Description

SummaryUsers with webhook permissions can conduct SSRF via webhooks. If they have permission to view the webhook logs, the (partial) request response is also disclosed DetailsWhen sending webhooks, the destination is not validated, causing SSRF. ImpactBypass of firewalls to interact with internal services. See https://owasp.org/Top10/A10_2021-Server-Side_Request_Forgery_%28SSRF%29/ for more potential impact. Resources https://cheatsheetseries.owasp.org/cheatsheets/Server_Side_Request_Forgery_Prevention_Cheat_Sheet.html for more information on SSRF and its fix.

Vendor	Product	Versions
Mautic	Mautic	affected `>= 4.4.0 - <= < 4.4.17` affected `>= 5.0.0-alpha - <= < 5.2.8` affected `>= 6.0.0-alpha - <= < 6.0.5`

Weaknesses (CWE)

CWE-918

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

None

Availability

None

References

https://github.com/mautic/mautic/security/advisories/GHSA-hj6f-7hp7-xg69

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-9821

Description

Affected Products

Weaknesses (CWE)

CVSS v3.1 Details

References