{"uuid": "69a932d7-60a6-4ea2-a3a7-bbc91219e372", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-55454", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116807803619283441", "content": "CVE-2026-55454: CRITICAL (CVSS 9.9) vuln in appsmithorg Appsmith <2.1. Unauth Caddy admin API inside container can be exploited via SSRF by low-priv users to control reverse proxy. Upgrade to 2.1+ ASAP. https://radar.offseq.com/threat/cve-2026-55454-cwe-749-exposed-dangerous-method-or-64dab1aa9059ef90 #OffSeq #infosec #CVE202655454 #appsmith", "creation_timestamp": "2026-06-25T00:01:01.442913Z"}