SSRF in Appsmithorg Appsmith
CVE-2026-55455
Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 2.1, the outbound HTTP host filter applied by WebClientUtils (used by the REST API and GraphQL datasource plugins) validates hosts against an exact-matc…
Vulnerability class: SSRF (Server-Side Request Forgery)
Affected products
- Appsmithorg Appsmith — versions < 2.1
Weakness classification (CWE)
References
- security-advisories@github.com (x_refsource_CONFIRM)