📢 Mailpit: vulnérabilité SSRF critique (CVE-2026-21859) activement exploitée expose des réseaux internes
📝 Selon CrowdSec, une vague d’exploitation ciblée de la vulnérabilité critique CVE-2026-21859 affectant Ma...
📖 cyberveille : https://cyberveille.ch/posts/2026-03-02-mailpit-vulnerabilite-ssrf-critique-cve-2026-21859-activement-exploitee-expose-des-reseaux-internes/
🌐 source : https://www.crowdsec.net/vulntracking-report/cve-2026-21859
#CVE_2026_21859 #Mailpit #Cyberveille

Just started using #MailPit for dev environments. It's an SMTP testing tool that basically simulates receiving emails sent by your app via SMTP so your app has no idea it's not production. It has some little accessibility quirks like unlabeled buttons here and there, but in general it's quite a thing. Again, I've only started, maybe my opinion will change.

For anybody that's interested in #Cypressio and #mailhog #Mailpit, I've forked the default cypress-mailhog repo, and made some changes so that it works with Mailpit. If anybody wants to use it and it hasn't got the changes integrated yet that they need - let me know, and try and get them implemented ASAP --- https://github.com/GrandadEvans/cypress-mailpit

I'm having one Hell of a time trying to get #Cypressio to work with #github workflows. I'm doing it locally with Act. It's not Cypress' fault though, it's just easier than listing #Laravel; #Vue; GH; Cypress; #MailPit etc etc.
Note: I'm obviously trying to fit in loads of hashtags, in order to get as big a reach as possible, as I'm still new here, and I'll be clicking on the hashtags myself, and finding loads more people/entities to follow and interact with

#Mailpit is super cool. Big fan of running my own local services instead of using something like #Mailtrap, etc.