目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1310

100%
请我们喝杯咖啡

CWE-918 服务端请求伪造(SSRF) 类漏洞列表 1659

CWE-918 服务端请求伪造(SSRF) 类弱点 1659 条 CVE 漏洞汇总,含 AI 中文分析。

CWE-918 服务端请求伪造(SSRF)是一种允许攻击者诱导服务器发起恶意请求的漏洞。当服务器接收外部提供的 URL 并据此获取内容时,若未严格校验目标地址,攻击者可构造请求访问内网资源或探测内部服务,从而绕过防火墙限制。开发者应实施严格的白名单机制,限制协议类型,禁用重定向,并对所有输入进行深度验证,确保请求仅能访问预期的合法外部资源,从而有效防御此类攻击。

MITRE CWE 官方描述
CWE:CWE-918 Server-Side Request Forgery (SSRF) 英文:Web 服务器从上游组件接收 URL 或类似请求,并检索该 URL 的内容,但未充分确保该请求被发送至预期的目的地。
常见影响 (3)
ConfidentialityRead Application Data
IntegrityExecute Unauthorized Code or Commands
Access ControlBypass Protection Mechanism
By providing URLs to unexpected hosts or ports, attackers can make it appear that the server is sending the request, possibly bypassing access controls such as firewalls that prevent the attackers from accessing the URLs directly. The server can be used as a proxy to conduct port scanning of hosts i…
代码示例 (1)
This code intends to receive a URL from a user, access the URL, and return the results to the user.
$url = $_GET['url']; # User-controlled input # Fetch the content of the provided URL $response = file_get_contents($url); echo $response;
Bad · PHP
# Define allowed URLs (or domains) $allowed_urls = [ 'https://example.com/data.json', 'https://api.example.com/info', ]; # Get the user-provided URL $url = $_GET['url'] ?? ''; # Validate against allowed URLs if (!in_array($url, $allowed_urls)) { http_response_code(400); echo "Invalid or unauthorized URL."; exit; } # Fetch content safely $response = @file_get_contents($url); if ($response === false) { http_response_code(500); echo "Failed to fetch content."; exit; } echo htmlspecialchars($response); # Escape output for safety
Good · PHP
CVE ID标题CVSS风险等级Published
CVE-2021-22969 PortlandLabs Concrete Cms 代码问题漏洞 — https://github.com/concrete5/concrete5 4.3 -2021-11-19
CVE-2021-25972 CamaleonCMS 代码问题漏洞 — camaleon_cms 4.9 Medium2021-10-20
CVE-2021-32663 Combodo iTop 代码问题漏洞 — iTop 8.7 High2021-10-19
CVE-2021-22958 Portlandlabs Concrete5 代码问题漏洞 — https://github.com/concrete5/concrete5 9.8 -2021-10-07
CVE-2021-39339 WordPress 插件 代码问题漏洞 — Telefication 5.8 Medium2021-09-22
CVE-2021-41084 http4s 注入漏洞 — http4s 8.7 High2021-09-21
CVE-2021-40438 Apache HTTP Server 代码问题漏洞 — Apache HTTP Server 8.1 -2021-09-16
CVE-2021-33705 SAP Enterprise Portal 代码问题漏洞 — SAP NetWeaver Enterprise Portal 9.3 -2021-09-15
CVE-2021-23029 F5 BIG-IP 代码问题漏洞 — BIG-IP Advanced WAF and BIG-IP ASM 8.1 -2021-09-14
CVE-2021-39195 Misskey 代码问题漏洞 — misskey 7.7 High2021-09-07
CVE-2021-3758 BookStack 代码问题漏洞 — bookstackapp/bookstack 8.1 -2021-09-02
CVE-2021-36043 Magento Commerce 和 Magento Open Source代码问题漏洞 — Magento Commerce 8.0 High2021-09-01
CVE-2021-28627 Adobe Experience Manager 代码问题漏洞 — Experience Manager 5.4 Medium2021-08-24
CVE-2021-37711 Shopware 代码问题漏洞 — platform 8.8 High2021-08-16
CVE-2021-24472 WordPress 插件代码问题漏洞 — QT KenthaRadio 9.8 -2021-08-02
CVE-2021-24371 WordPress Plugin RSVPMaker 代码问题漏洞 — RSVPMaker 2.7 -2021-08-02
CVE-2021-22726 EVlink City、EVlink Parking 和 EVlink Smart Wallbox 代码问题漏洞 — EVlink City (EVC1S22P4 / EVC1S7P4 all versions prior to R8 V3.4.0.1), EVlink Parking (EVW2 / EVF2 / EV.2 all versions prior to R8 V3.4.0.1), and EVlink Smart Wallbox (EVB1A all versions prior to R8 V3.4.0.1 ) 9.1 -2021-07-21
CVE-2021-29102 Esri Arcgis Server 代码问题漏洞 — ArcGIS Server 7.5 -2021-07-11
CVE-2021-32639 Emissary 代码问题漏洞 — emissary 7.2 High2021-07-02
CVE-2021-32698 Elabftw 代码问题漏洞 — elabftw 6.8 Medium2021-06-21
CVE-2021-34808 Synology Media Server 代码问题漏洞 — Media Server 5.8 Medium2021-06-18
CVE-2021-34811 Synology Download Station 代码问题漏洞 — Download Station 5.0 Medium2021-06-18
CVE-2021-32682 elFinder 代码问题漏洞 — elFinder 9.8 Critical2021-06-14
CVE-2021-33181 Synology Video Station Video Station 代码问题漏洞 — Synology Video Station 6.6 Medium2021-06-01
CVE-2021-33184 Synology Download Station 代码问题漏洞 — Synology Download Station 7.7 High2021-06-01
CVE-2021-25640 Apache Dubbo 代码问题漏洞 — Apache Dubbo 8.2 -2021-05-31
CVE-2020-14328 Red Hat Ansible 代码问题漏洞 — Tower 5.5 -2021-05-27
CVE-2020-14327 Red Hat Ansible 代码问题漏洞 — Tower 5.5 -2021-05-27
CVE-2021-29490 Jellyfin 代码问题漏洞 — jellyfin 5.8 Medium2021-05-05
CVE-2021-27905 Apache Solr 代码问题漏洞 — Apache Solr 9.1 -2021-04-13

CWE-918(服务端请求伪造(SSRF)) 是常见的弱点类别,本平台收录该类弱点关联的 1659 条 CVE 漏洞。