CVE-2025-53641

Name of the Vulnerable Software and Affected Versions: Postiz versions 1.45.1 through 1.62.3

Description: The Postiz frontend application allows an attacker to inject arbitrary HTTP headers into the middleware pipeline. This enables a server-side request forgery (SSRF) condition, allowing unauthorized outbound requests from the server hosting the Postiz application.

Recommendations: Update to version 1.62.3 or later.