### [CVE-2025-9821](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-9821)
![](https://img.shields.io/static/v1?label=Product&message=Mautic&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3E%3D%204.4.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=%3E%3D%205.0.0-alpha%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=%3E%3D%206.0.0-alpha%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-918%20Server-Side%20Request%20Forgery%20(SSRF)&color=brightgreen)

### Description

SummaryUsers with webhook permissions can conduct SSRF via webhooks. If they have permission to view the webhook logs, the (partial) request response is also disclosedDetailsWhen sending webhooks, the destination is not validated, causing SSRF.ImpactBypass of firewalls to interact with internal services.See  https://owasp.org/Top10/A10_2021-Server-Side_Request_Forgery_%28SSRF%29/  for more potential impact.Resources https://cheatsheetseries.owasp.org/cheatsheets/Server_Side_Request_Forgery_Prevention_Cheat_Sheet.html  for more information on SSRF and its fix.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/fkie-cad/nvd-json-data-feeds