Security Intel Hub 477— Search: `SSRF`×

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

FetchUrlReader Redirect Injection & SSRF Mitigation via Allow List

github.com · 2026-01-27

### Key Vulnerability Information #### 1. **Redirect Validation** - **Description**: - The code changes ensure that redirects are validated against the reading configuration. This is essential to prev…

FOG Project Unauthenticated SSRF in getversion.php (CVE-2026-24138)

github.com · 2026-01-27

## Key Information ### Vulnerability Overview - **Vulnerability Type**: Unauthenticated SSRF (Server-Side Request Forgery) - **Affected Versions**: 1.5.10.1754, > working-1.6-beta.2269 - **CVE ID**: C…

CVE-2025-56589: SSRF and LFI Vulnerability in Apyrse HTML2PDF Module

www.stratascale.com · 2026-01-27

### Key Information #### Vulnerability Overview - **Vulnerability Name**: Apyrse module SSRF & LFI - **CVE ID**: CVE-2025-56589 - **Discovery Team**: Stratascale Cybersecurity Research Unit (CRU) - **…

Saleor HTTP Redirect/SSRF Protection and File Upload Restriction Configuration

docs.saleor.io · 2026-01-27

## Critical Vulnerability Information ### HTTP Redirects and Timeouts - Saleor disables outgoing HTTP redirects by default and enforces strict timeout values (typically <20s). - This design aims to pr…

Nu Html Checker (vnu) CVE-2025-15104 SSRF Vulnerability Analysis

fluidattacks.com · 2026-01-20

### Critical Vulnerability Information #### Vulnerability Overview - **CVE ID**: CVE-2025-15104 - **CVSS v4.0 Base Score**: 6.9 - **Vulnerability Name**: Nu Html Checker (validator.nu) - Bypass Restri…

Miniflux SSRF Vulnerability (CVE-2026-21885) Advisory

github.com · 2026-01-20

### Vulnerability Key Information - **Vulnerability Type**: SSRF (Server-Side Request Forgery) - **Affected Versions**: <= 2.2.15 - **Fixed Version**: 2.2.16 - **Vulnerability ID**: CVE-2026-21885 - *…

Aiven BigQuery Sink Connector Arbitrary File Read/SSRF Vulnerability (CVE-2026-23529)

github.com · 2026-01-20

## Critical Vulnerability Information ### Vulnerability Description - **Vulnerability Name**: Arbitrary File Read in Google BigQuery Sink connector - **CVE ID**: CVE-2026-23529 - **GHSA ID**: GHSA-3mg…

Microsoft SharePoint SSRF Information Disclosure Vulnerability (CVE-2026-20958)

msrc.microsoft.com · 2026-01-20

### Microsoft SharePoint Information Disclosure Vulnerability - **CVE-ID:** CVE-2026-20958 - **Release Date:** Jan 13, 2026 - **Last Updated:** Jan 14, 2026 #### Severity and Impact - **Max Severity:*…

Merchant Mall TMS SSRF Vulnerability Analysis and Reproduction

github.com · 2026-01-20

### Key Information #### Vulnerability Description - **System Name**: Merchant Mall - **System Version**: TMS - **Vulnerability Type**: SSRF (Server-Side Request Forgery) #### Vulnerability Reproducti…

EyouCMS 1.7.7 SSRF Vulnerability Advisory

vuldb.com · 2026-01-03

### Vulnerability Key Information **Title:** Eyoucms 1.7.7 SSRF Vulnerability **Description:** A Server-Side Request Forgery (SSRF) vulnerability was discovered in EyouCMS version 1.7.7 and earlier. T…

Sonic Blogging Platform SSRF Vulnerability Analysis

vuldb.com · 2026-01-03

### Critical Vulnerability Information - **Vulnerability Type**: Server-Side Request Forgery (SSRF) - **Affected Product**: Sonic Blogging Platform (go-sonic/sonic 1.1.4) - **Vulnerability Description…

Teradek VidiU Pro SSRF Vulnerability Advisory (ZSL-2018-5461)

www.zeroscience.mk · 2025-12-29

### Teradek VidiU Pro 3.0.3 SSRF Vulnerability #### Title: Teradek VidiU Pro 3.0.3 SSRF Vulnerability #### Advisory ID: ZSL-2018-5461 #### Type: Local/Remote #### Impact: Exposure of System Informatio…

Teradek VidiU Pro SSRF Vulnerability and PoC (EDB-44672)

www.exploit-db.com · 2025-12-29

### Key Information - **Vulnerability Name**: Teradek VidiU Pro 3.0.3 - Server-Side Request Forgery - **EDB-ID**: 44672 - **CVE**: N/A - **Author**: LIQUIDWORM - **Type**: WEBAPPS - **Platform**: HARD…

SSRF Vulnerability in local-deep-research Download Service (CWE-918)

github.com · 2025-12-29

### Critical Vulnerability Information #### Vulnerability Title Server-Side Request Forgery (SSRF) in Download Service #### Vulnerability Severity - **Severity Rating**: Moderate - **CVSS v3 Score**: …

Splunk Enterprise Blind SSRF Vulnerability Advisory (CVE-2025-20388)

advisory.splunk.com · 2025-12-04

### Critical Vulnerability Information #### Vulnerability Title - **Blind Server Side Request Forgery (SSRF) through Distributed Search Peers in Splunk Enterprise** #### Vulnerability Identifiers - **…

Orion-ops SSRF via Unauthenticated Direct Test Connect API

github.com · 2025-12-04

### Critical Vulnerability Information #### Vulnerability Name - Orion-ops direct connectivity test allows SSRF and internal port scanning #### Affected Product - Orion-ops (server component) #### Vul…

Orion-ops SSRF Vulnerability: Unauthorized Internal Port Scanning and Network Probing

github.com · 2025-12-04

### Key Information #### Vulnerability Name - Orion-ops direct connectivity test allows SSRF and internal port scanning #### Affected Product - Orion-ops (server component) #### Affected Versions - <=…

ZenTaoPMS 21.7.6 SSRF in ai::modelTestConnection

github.com · 2025-12-04

### Vulnerability Key Information - **Vulnerability Name**: ZenTao Test Connection SSRF Vulnerability - **Vulnerability Type**: Server-Side Request Forgery (SSRF) - **Severity**: High - **Affected Ver…

ZenTao PMS <=21.7.6 SSRF Vulnerability Advisory

vuldb.com · 2025-12-04

## Critical Vulnerability Information - **Title**: Zentao PMS <=21.7.6-85642 SSRF - **Description**: An attacker can construct a malicious base parameter. By making the server send HTTP requests, the …

ZenTao 21.7.6 SSRF Vulnerability Analysis

github.com · 2025-12-04

### Key Information Summary - **Vulnerability Name**: ZenTao Test Connection SSRF Vulnerability - **Vulnerability Type**: Server-Side Request Forgery (SSRF) - **Affected Version**: ZenTaoPMS 21.7.6 - …

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.

Goal Reached Thanks to every supporter — we hit 100%!

Security Intel Hub 477— Search: SSRF×

Security Intel Hub 477— Search: `SSRF`×