Fallos del tipo CWE-918
2172 resultadosCVE-2026-49328MEDIUMApache Fesod (Incubating): Improper validation of user-supplied URLs leading to SSRFEPSS 0.5%CVE-2024-13029MEDIUMAntabot White-Jotter Edit Book book server-side request forgeryEPSS 0.5%CVE-2025-0584MEDIUMaEnrich Technology a+HRD - Server-Side Request Forgery (SSRF)EPSS 0.5%CVE-2024-0303MEDIUMYouke365 Parameter caiji.php server-side request forgeryEPSS 0.5%CVE-2024-0304MEDIUMYouke365 collect.php server-side request forgeryEPSS 0.5%CVE-2026-47356HIGHTerrascan v1.18.3 and prior are vulnerable to Server-Side Request Forgery (SSRF) via the webhook_url parameter in the file scan endpoint (POEPSS 0.5%CVE-2023-46784HIGHWordPress ICS Calendar plugin <= 10.12.0.3 - SSRF and Arbitrary File Read vulnerabilityEPSS 0.5%CVE-2025-61735HIGHApache Kylin: Server-Side Request ForgeryEPSS 0.5%CVE-2026-30637HIGHServer-Side Request Forgery (SSRF) vulnerability exists in the AnnounContent of the /admin/read.php in OTCMS V7.66 and before. The vulnerabiEPSS 0.5%CVE-2026-42404MEDIUMApache Neethi: Unrestricted HTTP Redirect Following in Policy ReferencesEPSS 0.5%CVE-2026-27739CRITICALAngular SSR is vulnerable to SSRF and Header Injection via request handling pipelineEPSS 0.5%CVE-2026-30840HIGHWallos: Server-Side Request Forgery (SSRF) in Notification TestersEPSS 0.5%CVE-2024-48450MEDIUMAn arbitrary file upload vulnerability in Huly Platform v0.6.295 allows attackers to execute arbitrary code via uploading a crafted HTML filEPSS 0.5%CVE-2023-6124MEDIUMServer-Side Request Forgery (SSRF) in salesagility/suitecrmEPSS 0.5%CVE-2025-34230MEDIUMVasion Print (formerly PrinterLogic) Blind SSRF via HP log_off_single_sign_on.phpEPSS 0.5%CVE-2023-26438MEDIUMExternal service lookups for a number of protocols were vulnerable to a time-of-check/time-of-use (TOCTOU) weakness, involving the JDK DNS cEPSS 0.5%CVE-2025-34229MEDIUMVasion Print (formerly PrinterLogic) Blind SSRF via HP installApp.phpEPSS 0.5%CVE-2024-6424CRITICALServer-Side Request Forgery vulnerability in MESbookEPSS 0.5%CVE-2024-0649MEDIUMZhiHuiYun Search ImageController.php download_network_image server-side request forgeryEPSS 0.5%CVE-2023-48711LOWServer-Side Request Forgery (SSRF) Vulnerability in google-translate-api-browserEPSS 0.5%