Weaknesses of type CWE-918
2,182 resultsCVE-2026-30247MEDIUMWeKnora: SSRF via RedirectionEPSS 0.4%CVE-2024-13904MEDIUMPlatform.ly for WooCommerce <= 1.1.6 - Unauthenticated Blind Server-Side Request ForgeryEPSS 0.4%CVE-2025-5186MEDIUMthinkgem JeeSite URI Scheme form ResourceLoader.getResource server-side request forgeryEPSS 0.4%CVE-2025-3572HIGHINTUMIT SmartRobot - Server-Side Request ForgeryEPSS 0.4%CVE-2026-42353HIGHPath traversal / SSRF in i18next-http-middleware via user-controlled language and namespace parametersEPSS 0.4%CVE-2026-28798CRITICALArbitrary internal service access via /v1/sys/proxy when Cloudflare Tunnel is enabled on ZimaOSEPSS 0.4%CVE-2025-1970HIGHExport and Import Users and Customers <= 2.6.2 - Authenticated (Administrator+) Server-Side Request Forgery via validate_file FunctionEPSS 0.4%CVE-2026-8606HIGHServer-Side Request Forgery in GitHub Enterprise Server via Advisory Package URL EndpointEPSS 0.4%CVE-2023-42450MEDIUMMastodon Server-Side Request Forgery vulnerabilityEPSS 0.4%CVE-2025-3412MEDIUMmymagicpower AIAS InferController.java server-side request forgeryEPSS 0.4%CVE-2024-29319LOWVolmarg Personal Management System 1.4.64 is vulnerable to SSRF (Server Side Request Forgery) via uploading a SVG file. The server can make EPSS 0.4%CVE-2025-3411MEDIUMmymagicpower AIAS AsrController.java server-side request forgeryEPSS 0.4%CVE-2025-4012MEDIUMplayeduxyz PlayEdu 开源培训系统 User Avatar create server-side request forgeryEPSS 0.4%CVE-2026-40500MEDIUMProcessWire CMS SSRF via Add Module From URLEPSS 0.4%CVE-2026-8768MEDIUMvercel ai provider-utils download-blob.ts validateDownloadUrl server-side request forgeryEPSS 0.4%CVE-2026-44016HIGHDocling: Unsafe Playwright-based HTML RenderingEPSS 0.4%CVE-2026-52805HIGHGogs: Migration Redirect Bypass Leads to Internal Repository TheftEPSS 0.4%CVE-2025-0474HIGHInvoice Ninja PDF Rendering Server Side Request ForgeryEPSS 0.4%CVE-2024-32803MEDIUMWordPress SuperFaktura WooCommerce plugin <= 1.40.3 - Server Side Request Forgery (SSRF) vulnerabilityEPSS 0.4%CVE-2026-40346MEDIUMNocoBase has SSRF in Workflow HTTP Request and Custom Request PluginsEPSS 0.4%