Affected Products

Timeline

• Feb 3, 2026 CVE Published
• Mar 3, 2026 CVE Updated
• May 1, 2026 Security Advisory

References

• https://github.com/axllent/mailpit/security/advisories/GHSA-54wq-72mp-cq7c advisory
• https://nvd.nist.gov/vuln/detail/CVE-2026-23829 advisory
• https://github.com/axllent/mailpit/commit/36cc06c125954dec6673219dafa084e13cc14534 patch
• https://github.com/axllent/mailpit/releases/tag/v1.28.3 url