A vulnerability was found in Appsmith up to 2.0 . It has been declared as critical . This issue affects some unknown processing of the component REST API . Such manipulation leads to server-side request forgery. This vulnerability is uniquely identified as CVE-2026-55455 . The attack can be launched remotely. No exploit exists. It is recommended to upgrade the affected component.