Weaknesses of type CWE-918
2,203 resultsCVE-2026-45412MEDIUMMaxKB: Unauthenticated SSRF via Workflow Template ImportEPSS 0.2%CVE-2026-54033HIGHLibreChat: SSRF via User-Provided Custom Endpoint baseURL — no private IP validation on user-configured API base URLsEPSS 0.2%CVE-2026-1015MEDIUMIBM InfoSphere Information Server is vulnerable to server-side request forgeryEPSS 0.2%CVE-2026-47382MEDIUMNocoDB: Server-Side Request Forgery via Database Connection HostEPSS 0.2%CVE-2026-4907MEDIUMPage-Replica Page Replica Endpoint sitemap sitemap.fetch server-side request forgeryEPSS 0.2%CVE-2026-27795MEDIUMLangChain Community: redirect chaining can lead to SSRF bypass via RecursiveUrlLoaderEPSS 0.2%CVE-2026-3966MEDIUM648540858 wvp-GB28181-pro IP Address ABLMediaNodeServerService.java getDownloadFilePath server-side request forgeryEPSS 0.2%CVE-2026-7291MEDIUMo2oa URL Fetching FileAction.java FileAction server-side request forgeryEPSS 0.2%CVE-2026-42449HIGHn8n-MCP: IPv4-mapped IPv6 addresses bypass SSRF protection in validateUrlSync(), enabling full SSRF for SDK embeddersEPSS 0.2%CVE-2026-39370HIGHWWBN AVideo has an Allowlisted downloadURL media extensions bypass SSRF protection and enable internal response exfiltration (Incomplete fix for CVE-2026-27732)EPSS 0.2%CVE-2024-34580MEDIUMApache XML Security for C++ through 2.0.4 implements the XML Signature Syntax and Processing (XMLDsig) specification without protection agaiEPSS 0.2%CVE-2026-6649MEDIUMQibo CMS headers server-side request forgeryEPSS 0.2%CVE-2026-8193MEDIUMAkaunting Invoice PDF Rendering dompdf.php server-side request forgeryEPSS 0.2%CVE-2026-5470MEDIUMmixelpixx Google-Research-MCP Model Context Protocol content-extractor.service.ts extractContent server-side request forgeryEPSS 0.2%CVE-2026-32019LOWOpenClaw < 2026.2.22 - Incomplete IPv4 Special-Use Range Blocking in SSRF GuardEPSS 0.2%CVE-2026-3683MEDIUMbufanyun HotGo Endpoint upload.go ImageTransferStorage server-side request forgeryEPSS 0.2%CVE-2026-5538MEDIUMQingdaoU OnlineJudge judge_server_heartbeat Endpoint JudgeServer.service_url server-side request forgeryEPSS 0.2%CVE-2026-6618MEDIUMlanggenius dify ApiBasedToolSchemaParser parser.py parse_openai_plugin_json_to_tool_bundle server-side request forgeryEPSS 0.2%CVE-2026-4589MEDIUMkalcaddle kodbox fileGet Endpoint editor.class.php PathDriverUrl server-side request forgeryEPSS 0.2%CVE-2025-12962MEDIUMLocal Syndication <= 1.5a - Authenticated (Contributor+) Server-Side Request Forgery via ShortcodeEPSS 0.2%