Falhas do tipo CWE-918
2.157 resultadosCVE-2022-41477CRITICALA security issue was discovered in WeBid <=1.2.2. A Server-Side Request Forgery (SSRF) vulnerability in the admin/theme.php file allows remoEPSS 1.1%CVE-2026-32871CRITICALFastMCP OpenAPI Provider has an SSRF & Path Traversal VulnerabilityEPSS 1.1%CVE-2025-62718MEDIUMAxios has a NO_PROXY Hostname Normalization Bypass that Leads to SSRFEPSS 1.1%CVE-2022-1592CRITICALServer-Side Request Forgery in scout in clinical-genomics/scoutEPSS 1.1%CVE-2021-37711HIGHAuthenticated server-side request forgery in file upload via URL.EPSS 1.1%CVE-2021-40186MEDIUMDNN CMS Server-Side Request Forgery (SSRF)EPSS 1.1%CVE-2024-29028MEDIUMmemos vulnerable to an SSRF in /o/get/httpmetaEPSS 1.0%CVE-2026-26121HIGHAzure IOT Explorer Spoofing VulnerabilityEPSS 1.0%CVE-2024-27927MEDIUMRSSHub vulnerable to SSRF in /mastodon, /zjoi, and /m4EPSS 1.0%CVE-2022-0939CRITICALServer-Side Request Forgery (SSRF) in janeczku/calibre-webEPSS 1.0%CVE-2024-42467CRITICALCometVisu Backend for openHAB affected by SSRF/XSSEPSS 1.0%CVE-2021-27312CRITICALServer Side Request Forgery (SSRF) vulnerability in Gleez Cms 1.2.0, allows remote attackers to execute arbitrary code and obtain sensitive EPSS 1.0%CVE-2024-29736HIGHApache CXF: SSRF vulnerability via WADL stylesheet parameterEPSS 1.0%CVE-2022-2352HIGHPost SMTP < 2.1.7 - Admin+ Blind SSRFEPSS 1.0%CVE-2021-39195HIGHServer-Side Request Forgery vulnerability in misskeyEPSS 1.0%CVE-2022-39039CRITICALaEnrich a+HRD - Server-Side Request Forgery (SSRF)EPSS 1.0%CVE-2021-34808MEDIUMServer-Side Request Forgery (SSRF) vulnerability in cgi component in Synology Media Server before 1.8.3-2881 allows remote attackers to acceEPSS 1.0%CVE-2021-36327MEDIUMDell EMC Streaming Data Platform versions before 1.3 contain a Server Side Request Forgery Vulnerability. A remote unauthenticated attacker EPSS 1.0%CVE-2021-24371—RSVPMaker < 8.7.3 - Authenticated (admin+) SSRFEPSS 1.0%CVE-2025-53767CRITICALAzure OpenAI Elevation of Privilege VulnerabilityEPSS 1.0%