Fallos del tipo CWE-918
2184 resultadosCVE-2025-64709CRITICALTypebot May Expose AWS EKS Credentials via Server Side Request Forgery in Webhook BlockEPSS 0.3%CVE-2025-23082HIGHVeeam Backup for Microsoft Azure is vulnerable to Server-Side Request Forgery (SSRF). This may allow an unauthenticated attacker to send unaEPSS 0.3%CVE-2026-4964MEDIUMletta-ai letta File URL message_helper.py _convert_message_create_to_message server-side request forgeryEPSS 0.3%CVE-2025-20075HIGHServer-side request forgery (SSRF) vulnerability exists in FileMegane versions above 3.0.0.0 prior to 3.4.0.0. Executing arbitrary backend WEPSS 0.3%CVE-2026-35036HIGHEch0 Affected by Unauthenticated Server-Side Request Forgery in Website Preview FeatureEPSS 0.3%CVE-2026-27488MEDIUMOpenClaw hardened cron webhook delivery against SSRFEPSS 0.3%CVE-2025-8680MEDIUMB Slider - Gutenberg Slider Block for WP <= 2.0.0 - Authenticated (Subscriber+) Server-Side Request ForgeryEPSS 0.3%CVE-2026-6605MEDIUMmodelscope agentscope Internal Service _common.py _get_bytes_from_web_url server-side request forgeryEPSS 0.3%CVE-2023-35817MEDIUMDevExpress before 23.1.3 allows AsyncDownloader SSRF.EPSS 0.3%CVE-2025-11674MEDIUMPiExtract|SOOP-CLM - Server-Side Request ForgeryEPSS 0.3%CVE-2024-9410MEDIUMAda.cx SSRF via Sentry MisconfigurationEPSS 0.3%CVE-2024-33592MEDIUMWordPress Radio Player plugin <= 2.0.73 - Server Side Request Forgery (SSRF) vulnerabilityEPSS 0.3%CVE-2023-42812MEDIUMGalaxy vulnerable to Server Side Request Forgery during data importsEPSS 0.3%CVE-2024-12121MEDIUMBroken Link Checker | Finder <= 2.5.0 - Authenticated (Author+) Blind Server-Side Request ForgeryEPSS 0.3%CVE-2026-0807HIGHFrontis Blocks <= 1.1.6 - Unauthenticated Server-Side Request Forgery via 'url' ParameterEPSS 0.3%CVE-2023-49746MEDIUMWordPress SpeedyCache Plugin <= 1.1.2 is vulnerable to Server Side Request Forgery (SSRF)EPSS 0.3%CVE-2021-47715MEDIUMHasura GraphQL 1.3.3 Server-Side Request Forgery via Remote Schema InjectionEPSS 0.3%CVE-2025-8678MEDIUMWP Crontrol - 1.17.0 - 1.19.1 - Authenticated (Administrator+) Blind Server-Side Request ForgeryEPSS 0.3%CVE-2024-13879MEDIUMStream <= 4.0.2 - Authenticated (Admin+) Server-Side Request ForgeryEPSS 0.3%CVE-2026-5618MEDIUMkalcaddle kodbox shareMake/shareCheck server-side request forgeryEPSS 0.3%