Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-918 (服务端请求伪造(SSRF)) — Vulnerability Class 1496

1496 vulnerabilities classified as CWE-918 (服务端请求伪造(SSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-47700 AI plugin APIs can be triggered using post actions — Mattermost 3.5 Low2025-08-21
CVE-2025-1142 IBM Edge Application Manager server-side request forgery — Edge Application Manager 5.4 Medium2025-08-20
CVE-2025-54925 Schneider Electric EcoStruxure Power Monitoring Expert和EcoStruxure Power Operation AdvancedReporting and Dashboards Module 代码问题漏洞 — EcoStruxure™ Power Monitoring Expert (PME) 7.5 High2025-08-20
CVE-2025-54924 Schneider Electric EcoStruxure Power Monitoring Expert和EcoStruxure Power Operation AdvancedReporting and Dashboards Module 代码问题漏洞 — EcoStruxure™ Power Monitoring Expert (PME) 7.5 High2025-08-20
CVE-2024-39954 Apache EventMesh Runtime: SSRF — Apache EventMesh Runtime 9.1 -2025-08-20
CVE-2025-5260 SSRF in PozitifIK's Pik Online — Pik Online 8.6 High2025-08-20
CVE-2025-54234 ColdFusion | Server-Side Request Forgery (SSRF) (CWE-918) — ColdFusion 2.7 Low2025-08-18
CVE-2025-8675 AI SEO Link Advisor - Less critical - Server-side Request Forgery - SA-CONTRIB-2025-095 — AI SEO Link Advisor 9.8AICriticalAI2025-08-15
CVE-2025-8013 Quttera Web Malware Scanner <= 3.5.1.41 - Authenticated (Administrator+) Server-Side Request Forgery — Quttera ThreatSign – Web Malware Scanner for WordPress 3.8 Low2025-08-15
CVE-2025-8680 B Slider - Gutenberg Slider Block for WP <= 2.0.0 - Authenticated (Subscriber+) Server-Side Request Forgery — bSlider – Create Responsive Image, Post, Product, and Video Sliders 4.3 Medium2025-08-15
CVE-2025-53241 WordPress Simplified plugin <= 1.0.11 - Server Side Request Forgery (SSRF) vulnerability — Simplified 5.5 Medium2025-08-14
CVE-2025-28987 WordPress PressForward <= 5.9.4 - Server Side Request Forgery (SSRF) vulnerability — PressForward 6.4 Medium2025-08-14
CVE-2025-53760 Microsoft SharePoint Elevation of Privilege Vulnerability — Microsoft SharePoint Enterprise Server 2016 7.1 High2025-08-12
CVE-2025-7622 AXIS Camera Station和AXIS Camera Station Pro 安全漏洞 — AXIS Camera Station Pro 6.5AIMediumAI2025-08-12
CVE-2025-55161 Stirling-PDF SSRF vulnerability on /api/v1/convert/markdown/pdf — Stirling-PDF 8.6 High2025-08-11
CVE-2025-55150 Stirling-PDF SSRF vulnerability on /api/v1/convert/html/pdf — Stirling-PDF 8.6 High2025-08-11
CVE-2025-55151 Stirling-PDF SSRF vulnerability on /api/v1/convert/file/pdf — Stirling-PDF 8.6 High2025-08-11
CVE-2025-25235 Omnissa Secure Email Gateway (SEG) updates address Server-Side Request Forgery (SSRF) vulnerability — Secure Email Gateway 8.6 High2025-08-11
CVE-2025-8772 Vinades NukeViet Module index.php server-side request forgery — NukeViet 4.3 Medium2025-08-09
CVE-2025-4655 Liferay Portal和Liferay DXP 代码问题漏洞 — Portal 9.1 -2025-08-09
CVE-2025-4581 Liferay Portal和Liferay DXP 代码问题漏洞 — Portal 9.1 -2025-08-09
CVE-2025-53767 Azure OpenAI Elevation of Privilege Vulnerability — Azure Open AI 10.0 Critical2025-08-07
CVE-2025-8529 cloudfavorites favorites-web CollectController.java getCollectLogoUrl server-side request forgery — favorites-web 6.3 Medium2025-08-04
CVE-2025-8527 Exrick xboot Swagger SecurityController.java server-side request forgery — xboot 6.3 Medium2025-08-04
CVE-2025-8520 givanz Vvveb Drag-and-Drop Editor editor server-side request forgery — Vvveb 4.7 Medium2025-08-04
CVE-2025-8341 SSRF in Infinity Datasource Plugin — grafana-infinity-datasource 5.0 Medium2025-08-04
CVE-2025-54132 Cursor's Mermaid Diagram Tool is Vulnerable to an Arbitrary Image Fetch — cursor 4.4 Medium2025-08-01
CVE-2025-54590 webfinger.js is vulnerable to Blind SSRF attacks through localhost — webfinger.js 8.2 -2025-08-01
CVE-2025-52567 GLPI has overly permissive URL verification — glpi 3.5 Low2025-07-30
CVE-2025-54381 BentoML is Vulnerable to an SSRF Attack Through File Upload Processing — BentoML 9.9 Critical2025-07-29

Vulnerabilities classified as CWE-918 (服务端请求伪造(SSRF)) represent 1496 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.