CVE-2026-45298— Dozzle: Pre-auth SSRF with response-body reflection via POST /api/notifications/test-webhook (default no-auth deploy)
Possible ATT&CK Techniques 3AI
T1592.004 · Client Configurations T1595.002 · Vulnerability Scanning T1598.004 · Spearphishing VoiceGet alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-45298
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Dozzle: Pre-auth SSRF with response-body reflection via POST /api/notifications/test-webhook (default no-auth deploy)
Source: NVD (National Vulnerability Database)
Vulnerability Description
Dozzle is a realtime log viewer for docker containers. Prior to 10.5.2, in a default dozzle deploy (the documented quickstart, no DOZZLE_AUTH_PROVIDER set), POST /api/notifications/test-webhook is reachable without authentication and forwards an attacker-controlled URL into a WebhookDispatcher that sends an HTTP POST to the supplied URL with attacker-controlled request headers, and returns the response status code AND up to 1MB of the response body to the caller, when the target replies non-2xx. This vulnerability is fixed in 10.5.2.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
服务端请求伪造(SSRF)
Source: NVD (National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2026-45298
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
Qwen3.6-35B-A3B · 8655 chars
Paid plan includes:
In-depth vulnerability mechanism
Trigger conditions & impact
Full executable POC code
Exploit chain & mitigation
POC zip download
100+ AI POC generations per month
III. Intelligence Information for CVE-2026-45298
请登录查看更多情报信息。
Vendor Advisories for CVE-2026-45298 (1)
IV. Related Vulnerabilities
Same weakness: CWE-918
- CVE-2026-9312
Server-Side Request Forgery vulnerability in GitHub Enterpri - CVE-2026-8606
Server-Side Request Forgery in GitHub Enterprise Server via - CVE-2026-45412
MaxKB: Unauthenticated SSRF via Workflow Template Import - CVE-2026-42335
MaxKB: SSRF Bypass in MaxKB OSS URL Fetch due to URL Parsing - CVE-2026-2264
Server-Side Request Forgery and Credential Exfiltration in G
V. Comments for CVE-2026-45298
No comments yet