Falhas do tipo CWE-918
2.157 resultadosCVE-2025-64163HIGHDataEase's DB2 is vulnerable to SSRFEPSS 1.0%CVE-2022-0528MEDIUMServer-Side Request Forgery (SSRF) in transloadit/uppyEPSS 1.0%CVE-2022-0767CRITICALServer-Side Request Forgery (SSRF) in janeczku/calibre-webEPSS 1.0%CVE-2026-21512MEDIUMAzure DevOps Server Cross-Site Scripting VulnerabilityEPSS 1.0%CVE-2023-26492MEDIUMDirectus vulnerable to Server-Side Request Forgery On File ImportEPSS 1.0%CVE-2026-26118HIGHAzure MCP Server Tools Elevation of Privilege VulnerabilityEPSS 1.0%CVE-2024-25294CRITICALAn SSRF issue in REBUILD v.3.5 allows a remote attacker to obtain sensitive information and execute arbitrary code via the FileDownloader.jaEPSS 1.0%CVE-2023-27162CRITICALopenapi-generator up to v6.4.0 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /api/gen/clients/{language}.EPSS 1.0%CVE-2021-25972MEDIUMCamaleon CMS - Server-Side Request Forgery (SSRF) in Media Upload FeatureEPSS 1.0%CVE-2022-0339MEDIUMServer-Side Request Forgery (SSRF) in janeczku/calibre-webEPSS 1.0%CVE-2022-0085LOWServer-Side Request Forgery (SSRF) in dompdf/dompdfEPSS 1.0%CVE-2023-25504MEDIUMApache Superset: Possible SSRF on import datasetsEPSS 0.9%CVE-2023-26735HIGHblackbox_exporter v0.23.0 was discovered to contain an access control issue in its probe interface. This vulnerability allows attackers to dEPSS 0.9%CVE-2025-23172HIGHThe Versa Director SD-WAN orchestration platform includes a Webhook feature for sending notifications to external HTTP endpoints. However, tEPSS 0.9%CVE-2022-1191HIGHSSRF on index.php/cobrowse/proxycss/ in livehelperchat/livehelperchatEPSS 0.9%CVE-2022-23071—Recipes - SSRF on ImportEPSS 0.9%CVE-2021-32698MEDIUMBlind Server-Side Request Forgery (SSRF) in eLabFTWEPSS 0.9%CVE-2026-40175MEDIUMAxios has Unrestricted Cloud Metadata Exfiltration via Header Injection ChainEPSS 0.9%CVE-2024-51358CRITICALAn issue in Linux Server Heimdall v.2.6.1 allows a remote attacker to execute arbitrary code via a crafted script to the Add new applicationEPSS 0.9%CVE-2017-6036—A Server-Side Request Forgery issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. The weEPSS 0.9%