Fallos del tipo CWE-918
2157 resultadosCVE-2023-48910CRITICALMicrocks up to 1.17.1 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /jobs and /artifact/download. This vuEPSS 1.0%CVE-2021-43780MEDIUMServer-Side Request Forgery (SSRF) in RedashEPSS 1.0%CVE-2021-33926HIGHAn issue in Plone CMS v. 5.2.4, 5.2.3, 5.2.2, 5.2.1, 5.2.0, 5.1rc2, 5.1rc1, 5.1b4, 5.1b3, 5.1b2, 5.1a2, 5.1a1, 5.1.7, 5.1.6, 5.1.5, 5.1.4, 5EPSS 1.0%CVE-2020-36851CRITICALRob--W cors-anywhere Misconfigured CORS Proxy Allows SSRFEPSS 1.0%CVE-2024-22203CRITICALWhoogle Search Server Side Request Forgery vulnerabilityEPSS 1.0%CVE-2021-33184HIGHServer-Side request forgery (SSRF) vulnerability in task management component in Synology Download Station before 3.8.15-3563 allows remote EPSS 1.0%CVE-2022-40700HIGHServer Side Request Forgery (SSRF) vulnerability affecting multiple WordPress pluginsEPSS 1.0%CVE-2023-23169MEDIUMSynapsoft pdfocus 1.17 is vulnerable to local file inclusion and server-side request forgery Directory Traversal.EPSS 1.0%CVE-2021-22726—A CWE-918: Server-Side Request Forgery (SSRF) vulnerability exists in EVlink City (EVC1S22P4 / EVC1S7P4 all versions prior to R8 V3.4.0.1), EPSS 1.0%CVE-2024-27347MEDIUMApache HugeGraph-Hubble: SSRF in Hubble connection pageEPSS 1.0%CVE-2023-50731CRITICALMindsDB has arbitrary file write in file.pyEPSS 1.0%CVE-2022-24871HIGHServer-Side Request Forgery (SSRF) in ShopwareEPSS 1.0%CVE-2019-6837—A Server-Side Request Forgery (SSRF): CWE-918 vulnerability exists in U.motion Server (MEG6501-0001 - U.motion KNX server, MEG6501-0002 - U.EPSS 1.0%CVE-2023-29291MEDIUMServer Side Request Forgery (SSRF) in USPS carrier integration configurationEPSS 1.0%CVE-2023-25195HIGHApache Fineract: SSRF template type vulnerability in certain authenticated usersEPSS 1.0%CVE-2023-27161HIGHJellyfin up to v10.7.7 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /Repositories. This vulnerability alEPSS 1.0%CVE-2024-22205CRITICALWhoogle Search Server Side Request Forgery vulnerabilityEPSS 1.0%CVE-2024-0759HIGHCollection of internally resolving IPsEPSS 1.0%CVE-2021-33181MEDIUMServer-Side Request Forgery (SSRF) vulnerability in webapi component in Synology Video Station before 2.4.10-1632 allows remote authenticateEPSS 1.0%CVE-2022-24862HIGHServer-Side Request Forgery in DatabasirEPSS 1.0%