Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-918 (服务端请求伪造(SSRF)) — Vulnerability Class 1481

1481 vulnerabilities classified as CWE-918 (服务端请求伪造(SSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-39276 Blind Server-Side Request Forgery (SSRF) in RSS feeds and planning — glpi 3.5 Low2022-11-03
CVE-2022-39241 Possible Server-Side Request Forgery (SSRF) in webhooks — discourse 7.6 High2022-11-02
CVE-2022-41552 Server-Side Request Forgery Vulnerability in Hitachi Infrastructure Analytics Advisor, Hitachi Ops Center Analyzer — Hitachi Infrastructure Analytics Advisor 9.8 Critical2022-11-01
CVE-2022-40296 Server-side request forgery (SSRF) in PHP Point of Sale version 19.0, by PHP Point of Sale, LLC. — PHP Point of Sale 10.0 -2022-10-31
CVE-2022-3708 Web Stories <= 1.24.0 - Server Side Request Forgery — Web Stories 9.6 Critical2022-10-28
CVE-2022-27622 Synology DiskStation Manager 代码问题漏洞 — DiskStation Manager (DSM) 4.1 Medium2022-10-25
CVE-2022-3247 Blog2Social < 6.9.10 - Subscriber+ SSRF — Blog2Social: Social Media Auto Post & Scheduler 8.1 -2022-10-25
CVE-2022-39055 Changing Information Technology Inc. RAVA certificate validation system - Server-Side Request Forgery (SSRF) — RAVA certificate validation system 5.3 Medium2022-10-18
CVE-2022-2352 Post SMTP < 2.1.7 - Admin+ Blind SSRF — Post SMTP Mailer/Email Log 7.2 -2022-09-26
CVE-2022-23464 Potential Server Side Request Forgery (SSRF) in Nepxion Discovery — Discovery 4.3 Medium2022-09-24
CVE-2022-38398 Server-Side Request Forgery Information Disclosure Vulnerability — Apache XML Graphics 7.5 -2022-09-22
CVE-2022-38648 PDFTranscoder does not block external resources — Apache XML Graphics 5.3 -2022-09-22
CVE-2022-40146 Jar url should be blocked by DefaultScriptSecurity — Apache XML Graphics 7.5 -2022-09-22
CVE-2022-39211 Server-Side Request Forgery (SSRF) via potential filter bypass in Nextcloud Server — security-advisories 3.0 Low2022-09-16
CVE-2022-2912 Craw Data <= 1.0.0 - Server Side Request Forgery — Craw Data 5.3 -2022-09-16
CVE-2022-36112 Blind Server-Side Request Forgery (SSRF) in GLPI — glpi 3.5 Low2022-09-14
CVE-2022-2900 Server-Side Request Forgery (SSRF) in ionicabizau/parse-url — ionicabizau/parse-url 9.1 -2022-09-14
CVE-2022-36376 WordPress Rank Math SEO plugin <= 1.0.95 - Server-Side Request Forgery (SSRF) vulnerability — Rank Math SEO (WordPress plugin) 6.8 Medium2022-09-09
CVE-2022-31196 Server-Side Request Forgery (SSRF) vulnerability in Databasir — databasir 7.6 High2022-09-02
CVE-2022-2556 MailChimp for Woocommerce < 2.7.2 - Admin+ SSRF — Mailchimp for WooCommerce 2.7 -2022-08-29
CVE-2022-2267 MailChimp for Woocommerce < 2.7.1 - Subscriber+ SSRF — Mailchimp for WooCommerce 4.3 -2022-08-29
CVE-2022-38187 Prevent access to sharing/rest/content/features/analyze to unauthorized users — Portal for ArcGIS 7.5 High2022-08-15
CVE-2022-35949 `undici.request` vulnerable to SSRF using absolute URL on `pathname` — undici 5.3 Medium2022-08-12
CVE-2022-2756 Server-Side Request Forgery (SSRF) in kareadita/kavita — kareadita/kavita 6.5 -2022-08-10
CVE-2022-31132 Unauthenticated SSRF in 3rd party module "cerdic/csstidy" — security-advisories 8.3 High2022-08-04
CVE-2022-31188 Server-Side Request Forgery Vulnerability in Computer Vision Annotation Tool (CVAT) — cvat 8.6 High2022-08-01
CVE-2022-32457 Data Systems Consulting Co., Ltd. BPM - Blind Server-Side Request Forgery (SSRF) — BPM 5.3 Medium2022-07-20
CVE-2022-2339 Server-Side Request Forgery (SSRF) in nocodb/nocodb — nocodb/nocodb 6.5 -2022-07-07
CVE-2022-0085 Server-Side Request Forgery (SSRF) in dompdf/dompdf — dompdf/dompdf 7.5 -2022-06-28
CVE-2017-20106 Lithium Forum Compose Message server-side request forgery — Forum 5.3 Medium2022-06-28

Vulnerabilities classified as CWE-918 (服务端请求伪造(SSRF)) represent 1481 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.