Fallos del tipo CWE-918
2182 resultadosCVE-2026-1180MEDIUMOrg.keycloak.protocol.oidc: blind server-side request forgery (ssrf) in keycloak oidc dynamic client registration via jwks_uriEPSS 0.4%CVE-2024-13923HIGHOrder Export & Order Import for WooCommerce <= 2.6.0 - Authenticated (Administrator+) Server-Side Request Forgery via validate_file FunctionEPSS 0.4%CVE-2023-6964HIGHGutenberg Blocks by Kadence Blocks – Page Builder Features <= 3.1.26 - Authenticated(Contributor+) Server-Side Request Forgery (SSRF)EPSS 0.4%CVE-2026-3125HIGHSSRF vulnerability in opennextjs-cloudflare via /cdn-cgi/ path normalization bypassEPSS 0.4%CVE-2026-3270MEDIUMpsi-probe PSI Probe Whois Whois.java lookup server-side request forgeryEPSS 0.4%CVE-2025-49545MEDIUMColdFusion | Server-Side Request Forgery (SSRF) (CWE-918)EPSS 0.4%CVE-2025-14004MEDIUMdayrui XunRuiCMS Email Setting admind45f74adbd95.php server-side request forgeryEPSS 0.4%CVE-2024-36414HIGHSuiteCRM authenticated Server-Side Request ForgeryEPSS 0.4%CVE-2026-7417MEDIUMAlgovate xhs-mcp MCP mcp.server.ts xhs_publish_content server-side request forgeryEPSS 0.4%CVE-2025-6762MEDIUMdiyhi bbs HTTP Header login getUrl server-side request forgeryEPSS 0.4%CVE-2025-11636MEDIUMTomofun Furbo 360 Account server-side request forgeryEPSS 0.4%CVE-2026-56285HIGHNitter - Server-Side Request Forgery in /video Media Proxy EndpointEPSS 0.4%CVE-2025-45887CRITICALYifang CMS v2.0.2 is vulnerable to Server-Side Request Forgery (SSRF) in /api/file/getRemoteContent.EPSS 0.4%CVE-2026-9464MEDIUMYunaiV yudao-cloud Admin API Endpoint create IotDataSinkHttpConfig server-side request forgeryEPSS 0.4%CVE-2026-26338MEDIUMHyland Alfresco Transformation Service SSRFEPSS 0.4%CVE-2025-10410MEDIUMSourceCodester Link Status Checker index.php server-side request forgeryEPSS 0.4%CVE-2026-2264CRITICALServer-Side Request Forgery and Credential Exfiltration in Google Cloud Apigee via SetIntegrationRequest Policy.EPSS 0.4%CVE-2026-25493MEDIUMCraft has a SSRF in GraphQL Asset Mutation via HTTP RedirectEPSS 0.4%CVE-2024-39954MEDIUMApache EventMesh Runtime: SSRFEPSS 0.4%CVE-2026-33693MEDIUMLemmy's Activitypub-Federation has SSRF via 0.0.0.0 bypass in activitypub-federation-rust v4_is_invalid()EPSS 0.4%