SSRF in Appsmithorg Appsmith
CVE-2026-50189
Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 2.1, Appsmith's bundled supervisord exposes an XML-RPC interface on port 9001, reachable from outside the container via a Caddy reverse-proxy route at /…
Affected products
- Appsmithorg Appsmith — versions < 2.1
Weakness classification (CWE)
References
- security-advisories@github.com (x_refsource_CONFIRM)