Description
A vulnerability has been found in mettle sendportal up to 3.0.1. This issue affects the function sendgrid/postmark/postal/mailjet of the component APIv1 Webhooks. The manipulation leads to missing authentication. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may be used. The project was informed of the problem early through an issue report but has not responded yet.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
No advisories yet.
References
History
Thu, 09 Jul 2026 17:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A vulnerability has been found in mettle sendportal up to 3.0.1. This issue affects the function sendgrid/postmark/postal/mailjet of the component APIv1 Webhooks. The manipulation leads to missing authentication. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may be used. The project was informed of the problem early through an issue report but has not responded yet. | |
| Title | mettle sendportal APIv1 Webhooks mailjet missing authentication | |
| First Time appeared |
Mettle
Mettle sendportal |
|
| Weaknesses | CWE-287 CWE-306 |
|
| CPEs | cpe:2.3:a:mettle:sendportal:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Mettle
Mettle sendportal |
|
| References |
| |
| Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2026-07-09T16:30:09.358Z
Reserved: 2026-07-09T05:36:19.016Z
Link: CVE-2026-15192
No data.
No data.
No data.
OpenCVE Enrichment
No data.