CVE-2026-41172 - Squidex vulnerable to Server-Side Request Forgery (SSRF) via URL-based asset upload (/api/apps/{app}/assets)

CVE ID :CVE-2026-41172 Published : April 22, 2026, 10:16 p.m. | 1 hour, 24 minutes ago Description :Squidex is an open source headless content management system and content management hub. Prior to version 7.23.0, an SSRF vulnerability allows a user with asset upload permission to force the se