Description

listmonk is a standalone, self-hosted, newsletter and mailing list manager. Starting in version 4.0.0 and prior to version 5.0.2, the `env` and `expandenv` template functions which is enabled by default in Sprig enables capturing of env variables on host. While this may not be a problem on single-user (super admin) installations, on multi-user installations, this allows non-super-admin users with campaign or template permissions to use the `{{ env }}` template expression to capture sensitive environment variables. Users should upgrade to v5.0.2 to mitigate the issue.

INFO

Published Date :

2025-06-09T16:21:48.266Z

Last Modified :

2025-06-10T13:25:02.262Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2025-49136 vulnerability.

Vendors Products
Nadh
  • Listmonk
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-49136.

URL Resource
https://github.com/knadh/listmonk/commit/d27d2c32cf3af2d0b24e29ea5a686ba149b49b3e cve-icon cve-icon
https://github.com/knadh/listmonk/releases/tag/v5.0.2 cve-icon cve-icon
https://github.com/knadh/listmonk/security/advisories/GHSA-jc7g-x28f-3v3h cve-icon cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact