CVE-2026-22794HIGH 8.8EPSS p30.9%

CVE-2026-22794CVE-2026-22794

Description

Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 1.93, the server uses the Origin value from the request headers as the email link baseUrl without validation. If an attacker controls the Origin, password reset / email verification links in emails can be generated pointing to the attacker’s domain, causing authentication tokens to be exposed and potentially leading to account takeover. This vulnerability is fixed in 1.93.

Scoring

CVSS 3.18.8 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS0.39% probability of exploitation · percentile 30.9% · 2026-06-18T12:00:27Z
Published2026-01-12
Last modified2026-01-21

Underlying weaknesses· 1

CWE-346

References

  1. https://github.com/appsmithorg/appsmith/commit/6f9ee6226bac13fb4b836940b557913fff78b633
  2. https://github.com/appsmithorg/appsmith/security/advisories/GHSA-7hf5-mc28-xmcv
  3. https://github.com/appsmithorg/appsmith/security/advisories/GHSA-7hf5-mc28-xmcv

1

TypeTargetConfidenceTier
WeaknessOrigin Validation Errorcwe-3460%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-30862
CVE
CVE-2026-24042
CVE
CVE-2025-70948
CVE
CVE-2026-39912
CVE
CVE-2026-28213
CVE
CVE-2026-29199
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.