Vulnerability Report

CVE-2026-22794

Title: Authentication Token Exposure in Appsmith

Other

Proof Of Concept

PoC Available for CVE-2026-22794

CWE Category CWE-346

Published Date Jan 12, 2026

Modified Date Jan 21, 2026

Exploit Status Available

Score 9.6 CVSS v3.1

Exploit Probability (EPSS)

0.39%

Vulnerability Summary

CVE-2026-22794: Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 1.93, the server uses the Origin value from the request headers as the email link baseUrl without validation. If an attacker controls the Origin, password reset / email verification links in emails can be generated pointing to the attacker’s domain, causing authentication tokens to be exposed and potentially leading to account takeover. This vulnerability is fixed in 1.93.

Impacted Vendors

appsmith 1

Reference Links

https://github.com/appsmithorg/appsmith/commit/6f9ee6226bac13fb4b836940b557913fff78b633 https://github.com/appsmithorg/appsmith/security/advisories/GHSA-7hf5-mc28-xmcv

CVSS v3.1

Source Entity [email protected]

Severity CRITICAL

9.6

Attack Vector

NETWORK

Complexity

LOW

Privileges

N/A

Interaction

REQUIRED

Confidentiality

N/A

Integrity

N/A

Availability

N/A

Scope

CHANGED

RAW VECTOR CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H