PT-2026-23796 · Caddy · Caddy

Nucleiav

Published

2026-03-06

Updated

2026-03-25

CVE-2026-30851

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Caddy versions 2.10.0 through 2.11.1

Description Caddy is a server platform that utilizes TLS by default. A flaw exists in the forward auth functionality where the copy headers option fails to remove headers provided by the client. This can lead to identity injection and potential privilege escalation. The vulnerable component is the copy headers function within the forward auth module.

Recommendations Update to Caddy version 2.11.2 or later.

Exploit

Fix

LPE

Improper Authentication

Insufficient Verification of Data Authenticity

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287CWE-345

Related Identifiers

CVE-2026-30851

GHSA-7R4P-VJF4-GXV4

GO-2026-4639

SUSE-SU-2026:1042-1

Affected Products

Caddy

PT-2026-23796 · Caddy · Caddy

CVE-2026-30851

Weakness Enumeration

Related Identifiers

Affected Products

References · 144