Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-918 (服务端请求伪造(SSRF)) — Vulnerability Class 1495

1495 vulnerabilities classified as CWE-918 (服务端请求伪造(SSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-37164 CVAT SSRF via custom cloud storage endpoints — cvat 7.1 High2024-06-13
CVE-2024-34111 SSRF in service connector — Adobe Commerce 6.5 Medium2024-06-13
CVE-2024-36414 SuiteCRM authenticated Server-Side Request Forgery — SuiteCRM 7.7 High2024-06-10
CVE-2024-4354 TablePress – Tables in WordPress made easy <= 2.3 - Authenticated (Author+) Server-Side Request Forgery via DNS Rebind — TablePress – Tables in WordPress made easy 6.4 Medium2024-06-07
CVE-2024-5328 SSRF Vulnerability in lunary-ai/lunary — lunary-ai/lunary 9.8AICriticalAI2024-06-06
CVE-2024-3149 SSRF in mintplex-labs/anything-llm — mintplex-labs/anything-llm 8.1AIHighAI2024-06-06
CVE-2024-4851 SSRF Vulnerability in stangirard/quivr — stangirard/quivr 9.1AICriticalAI2024-06-06
CVE-2024-3095 SSRF in Langchain Web Research Retriever in langchain-ai/langchain — langchain-ai/langchain 9.1AICriticalAI2024-06-06
CVE-2024-5186 Server Side Request Forgery (SSRF) in imartinez/privategpt — imartinez/privategpt 7.5AIHighAI2024-06-06
CVE-2024-5482 SSRF in add_webpage endpoint in parisneo/lollms-webui — parisneo/lollms-webui 9.8AICriticalAI2024-06-06
CVE-2024-4325 Server-Side Request Forgery (SSRF) in gradio-app/gradio — gradio-app/gradio 7.5AIHighAI2024-06-06
CVE-2024-3152 Privilege Escalation and Local File Inclusion in mintplex-labs/anything-llm — mintplex-labs/anything-llm 9.8AICriticalAI2024-06-06
CVE-2024-20404 Cisco Finesse 代码问题漏洞 — Cisco Unified Contact Center Enterprise 7.2 High2024-06-05
CVE-2024-5526 Grafana OnCall 安全漏洞 — OnCall 7.7 High2024-06-05
CVE-2024-4084 SSRF vulnerability in mintplex-labs/anything-llm — mintplex-labs/anything-llm 9.1 -2024-06-05
CVE-2024-4219 SSRF In BeyondInsight — BeyondInsight 4.8 Medium2024-06-04
CVE-2024-35633 WordPress Blocksy Companion plugin <= 2.0.42 - Server Side Request Forgery (SSRF) vulnerability — Blocksy Companion 4.4 Medium2024-06-03
CVE-2024-35635 WordPress Ninja Tables plugin <= 5.0.9 - Server Side Request Forgery (SSRF) vulnerability — Ninja Tables 4.4 Medium2024-06-03
CVE-2024-35637 WordPress Church Admin plugin <= 4.3.6 - Server Side Request Forgery (SSRF) vulnerability — Church Admin 4.4 Medium2024-06-03
CVE-2023-7073 Auto Featured Image (Auto Post Thumbnail) <= 4.1.7 - Authenticated (Author+) Server-Side Request Forgery — Auto Featured Image (Auto Post Thumbnail) 6.4 Medium2024-05-31
CVE-2024-1855 WPCafe <= 2.2.23 - Unauthenticated Blind Server-Side Request Forgery — WPCafe – Restaurant Menu, Online Food Ordering & Table Booking System 5.3 Medium2024-05-23
CVE-2024-5031 MemberPress <= 1.11.29 - Authenticated (Contributor+) Blind Server-Side Request Forgery via mepr-user-file Shortcode — Memberpress 8.5 High2024-05-22
CVE-2024-4789 Cost Calculator Builder Pro <= 3.1.72 - Authenticated (Subscriber+) Server-Side Request Forgery — Cost Calculator Builder PRO 6.4 Medium2024-05-17
CVE-2024-3485 Server-Side Request Forgery vulnerability in iManager — iManager 5.3 Medium2024-05-15
CVE-2024-3970 Server-Side Request Forgery vulnerability in iManager — iManager 5.3 Medium2024-05-15
CVE-2024-4894 ITPison OMICARD EDM - Server-Side Request Forgery — OMICARD EDM 5.3 Medium2024-05-15
CVE-2024-4562 WhatsUp Gold Server-Side Request Forgery Information Disclosure Vulnerability via HttpMonitorSettings — WhatsUp Gold 5.4 Medium2024-05-14
CVE-2024-4561 WhatsUp Gold Server-Side Request Forgery Information Disclosure Vulnerability via FaviconController — WhatsUp Gold 4.2 Medium2024-05-14
CVE-2024-0862 Proofpoint Enterprise Protection 代码问题漏洞 — Enterprise Protection 5.0 Medium2024-05-14
CVE-2024-35172 WordPress ShortPixel Adaptive Images plugin <= 3.8.3 - Server Side Request Forgery (SSRF) vulnerability — ShortPixel Adaptive Images 4.4 Medium2024-05-13

Vulnerabilities classified as CWE-918 (服务端请求伪造(SSRF)) represent 1495 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.