—
GO-2026-5599
Mailpit: Path traversal & arbitrary file write in mailpit dump --http via attacker-controlled message IDs in github.com/axllent/mailpit
Details
Mailpit: Path traversal & arbitrary file write in mailpit dump --http via attacker-controlled message IDs in github.com/axllent/mailpit
Are you affected?
Enter the version of the package you're using.
Affected packages
Go / github.com/axllent/mailpit
Introduced in:
0 Fixed in: 1.30.0 Fix
go get github.com/axllent/mailpit@v1.30.0