Security Intel Hub 477— Search: `SSRF`×

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

IBM Concert Software Vulnerability Advisory: Multiple CVEs including RCE, SSRF, and Heap Inspection

www.ibm.com · 2026-02-24

Thinking Process: 1. **Analyze the Request:** * **Task:** Translate a Chinese vulnerability intelligence summary to English. * **Role:** Professional translator specializing in cybersecurity. * **Cons…

Agent DVR CVE-2025-63408 Authenticated RCE via Path Traversal and SSRF

www.ericholub.com · 2025-11-19

## Key Vulnerability Information - **Affected Software**: Agent DVR - **Affected Versions**: `New Device` -> `Network IP Camera`. 2. **Configure the Camera**: Update the Source Type to `Network Camera…

Cisco Security Advisory: Multiple Critical RCE and DoS Vulnerabilities (CVE-2025-20333, CVE-2025-20363, etc.)

tools.cisco.com · 2025-11-11

### Critical Vulnerability Information #### 1. Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Remote Code Execution Vulnerability…

Hitachi Ops Center Analyzer/Viewpoint Security Advisory: SSRF, Info Disclosure (CVE-2022-41552, CVE-2020-36605)

www.hitachi.com · 2025-11-09

### Critical Vulnerability Information #### Security Advisory ID - `hitachi-sec-2022-134` #### Vulnerability Description - **CVE-2022-41552**: Server-side Request Forgery (SSRF) vulnerability, CVSS Sc…

Jenkins Security Advisory: SSRF, Path Traversal, and Input Validation Vulnerabilities

jenkins.io · 2025-11-07

- **Vulnerability List**: * SECURITY-506 / CVE-2018-1000067 (medium) - Improperly secured form validation for proxy configuration allowed Server-Side Request Forgery * SECURITY-705 / CVE-2018-6356 (me…

Cisco Security Advisory: Multiple Critical RCE and DoS Vulnerabilities (CVE-2025-20333, CVE-2025-20363)

tools.cisco.com · 2025-11-07

Cisco Security Advisory: Multiple Critical RCE and DoS Vulnerabilities (CVE-2025-20333, CVE-2025-20363, etc.)

tools.cisco.com · 2025-11-07

### Critical Vulnerability Information | Vulnerability Name | Impact Level | CVE ID | Last Updated Date | Version | |--------------------|--------------|--------|-------------------|---------| | Cisco…

Allure XML Plugins XXE Vulnerability: Arbitrary File Disclosure and SSRF

github.com · 2025-07-06

### Critical Vulnerability Information #### Vulnerability Name - Improper XXE Restriction #### Affected Versions - io.qameta.allure.plugins:junit-xml-plugin (Maven) < 2.34.0 - io.qameta.allure.plugins…

HCL BigFix Compliance Vulnerabilities: CVE-2024-30140/141/142 (SSRF/Info Disclosure/Cookie)

support.hcl-software.com · 2024-11-09

From this webpage screenshot, the following key vulnerability information can be obtained: 1. **Vulnerability Name**: HCL BigFix Compliance is affected by multiple security vulnerabilities 2. **CVE ID…

Siemens SINEC Security Monitor Multiple Vulnerabilities (RCE/LPE/SSRF) CVE-2024-47553/47562/47563/47565

cert-portal.siemens.com · 2024-10-09

### Key Information #### Vulnerability Description - **Vulnerability ID**: SSA-430425 - **Affected Product**: SINEC Security Monitor before V4.9.0 - **Affected Versions**: All versions < V4.9.0 - **Vu…

Payara Platform 6.2024.9 Security Fixes: FISH-9112 (SSRF) and FISH-9197 (Info Disclosure)

docs.payara.fish · 2024-09-13

From this webpage screenshot, the following key vulnerability information can be obtained: 1. **Security Fixes**: - [FISH-9112] REST Interface Link Redirection via Host parameter - [FISH-9197] Sensiti…

Jenkins Security Advisory: Multiple Plugin Vulnerabilities (CVE-2019-10331/10337)

jenkins.io · 2025-11-09

### Jenkins Security Advisory 2019-06-11 #### Security Advisories - **CloudBees CD Plugin** - **jx-resources Plugin** - **Token Macro Plugin** ### Descriptions #### XML External Entity processing vuln…

Azure Custom Locations RP Elevation of Privilege Vulnerability (CVE-2026-26135)

msrc.microsoft.com · 2026-04-03

# Azure Custom Locations Resource Provider (RP) Elevation of Privilege Vulnerability **漏洞概述** * **CVE编号**: CVE-2026-26135 * **发布日期**: 2026年4月2日 * **漏洞类型**: 权限提升 (Elevation of Privilege) * **弱点类型**: 服务…

Rack Host Header Validation Bypass via Invalid Characters

github.com · 2026-04-03

# Rack::Request Host Header Validation Bypass Vulnerability Summary **Vulnerability Overview** * **Vulnerability Name:** Rack::Request accepts invalid Host characters, enabling host allowlist bypass (…

Microsoft .NET Framework XmlTextReader XXE Injection Vulnerability and POC

github.com · 2026-04-02

**Vulnerability Overview** * **Vulnerability Name:** XML External Entity (XXE) Injection via Unsafe XmlTextReader in XML file and Schema loading * **Affected Products:** Microsoft .NET Framework (spec…

CVE-2026-28889: XXE Vulnerability in esaml Library and Fix

github.com · 2026-04-07

### Vulnerability Summary: CVE-2026-28889 **1. Vulnerability Overview** * **Vulnerability Name**: CVE-2026-28889 * **Vulnerability Type**: XML External Entity Injection (XXE) * **Description**: This v…

XXE in OpenRemote Velbus Asset Import (CVSS 7.6)

github.com · 2026-04-23

# XXE in Velbus Asset Import ## Vulnerability Overview The Velbus asset import feature does not implement XXE (XML External Entity) hardening when parsing attacker-controlled XML. An authenticated use…

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.

Goal Reached Thanks to every supporter — we hit 100%!

Security Intel Hub 477— Search: SSRF×

Security Intel Hub 477— Search: `SSRF`×