Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-918 (服务端请求伪造(SSRF)) — Vulnerability Class 1487

1487 vulnerabilities classified as CWE-918 (服务端请求伪造(SSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-1522 PostHog database_schema Server-Side Request Forgery Information Disclosure Vulnerability — PostHog 6.5 -2025-04-23
CVE-2025-1521 PostHog slack_incoming_webhook Server-Side Request Forgery Information Disclosure Vulnerability — PostHog 6.5 -2025-04-23
CVE-2025-27907 IBM WebSphere Application Server server-side request forgery — WebSphere Application Server 4.1 Medium2025-04-22
CVE-2025-2987 IBM Maximo Asset Management server-side request forgery — Maximo Asset Management 3.8 Low2025-04-21
CVE-2025-3787 PbootCMS Image server-side request forgery — PbootCMS 2.7 Low2025-04-18
CVE-2024-56736 Apache HertzBeat: Server-Side Request Forgery (SSRF) in Api Config Oss — Apache HertzBeat 9.1AICriticalAI2025-04-16
CVE-2025-3691 mirweiye Seven Bears Library CMS Add Link server-side request forgery — Seven Bears Library CMS 2.7 Low2025-04-16
CVE-2025-30964 WordPress Photography theme < 7.7.6 - Server Side Request Forgery (SSRF) vulnerability — Photography 5.4 Medium2025-04-15
CVE-2025-26990 WordPress Royal Elementor Addons plugin <= 1.7.1006 - Server Side Request Forgery (SSRF) vulnerability — Royal Elementor Addons 4.4 Medium2025-04-15
CVE-2025-32102 CrushFTP 安全漏洞 — CrushFTP 5.0 Medium2025-04-15
CVE-2025-31490 AutoGPT allows SSRF due to DNS Rebinding in requests wrapper — AutoGPT 7.5 High2025-04-14
CVE-2025-3572 INTUMIT SmartRobot - Server-Side Request Forgery — SmartRobot 7.5 High2025-04-14
CVE-2025-22374 SSRF in CyberAudit-Web videx-legacy-ssl — CyberAudit-Web 9.8AICriticalAI2025-04-10
CVE-2025-31009 WordPress IndieBlocks plugin <= 0.13.1 - Server Side Request Forgery (SSRF) Vulnerability — IndieBlocks 5.4 Medium2025-04-09
CVE-2025-32487 WordPress Waymark plugin <= 1.5.2 - Server Side Request Forgery (SSRF) Vulnerability — Waymark 4.9 Medium2025-04-09
CVE-2025-32675 WordPress SEO Help plugin <= 6.7.9 - Server Side Request Forgery (SSRF) vulnerability — SEO Help 6.8 Medium2025-04-09
CVE-2025-32691 WordPress PowerPress Podcasting plugin <= 11.12.6 - Server Side Request Forgery (SSRF) Vulnerability — PowerPress Podcasting 4.9 Medium2025-04-09
CVE-2025-32372 Server-Side Request Forgery (SSRF) in DotNetNuke.Core — Dnn.Platform 6.5 Medium2025-04-09
CVE-2025-3412 mymagicpower AIAS InferController.java server-side request forgery — AIAS 6.3 Medium2025-04-08
CVE-2025-3411 mymagicpower AIAS AsrController.java server-side request forgery — AIAS 6.3 Medium2025-04-08
CVE-2025-32013 Server-Side Request Forgery via LNURL Authentication Callback in LNbits Lightning Network Payment System — lnbits 7.5AIHighAI2025-04-06
CVE-2025-32358 Zammad 安全漏洞 — Zammad 4.0 Medium2025-04-05
CVE-2025-3254 xujiangfei admintwo add server-side request forgery — admintwo 6.3 Medium2025-04-04
CVE-2025-2245 Server Side Request Forgery in GravityZone Update Server Using Null Bytes (VA-12646) — GravityZone Update Server 9.1AICriticalAI2025-04-04
CVE-2025-2243 SSRF in GravityZone Console via DNS Truncation (VA-12634) — GravityZone Console 9.8AICriticalAI2025-04-04
CVE-2025-3192 Browsershot 安全漏洞 — spatie/browsershot 8.2 High2025-04-04
CVE-2025-31824 WordPress WP Optin Wheel Plugin <= 1.4.7 - Server Side Request Forgery (SSRF) vulnerability — WP Optin Wheel 5.4 Medium2025-04-01
CVE-2025-31796 WordPress ElementsCSS Addons for Elementor plugin <= 1.0.8.9 - Server Side Request Forgery (SSRF) vulnerability — ElementsCSS Addons for Elementor 5.4 Medium2025-04-01
CVE-2025-31117 OpenEMR Out-of-Band Server-Side Request Forgery (OOB SSRF) Vulnerability — openemr 7.5 -2025-03-31
CVE-2025-31116 Mobile Security Framework (MobSF) has a SSRF Vulnerability fix bypass on assetlinks_check with DNS Rebinding — Mobile-Security-Framework-MobSF 4.4 Medium2025-03-31

Vulnerabilities classified as CWE-918 (服务端请求伪造(SSRF)) represent 1487 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.