Falhas do tipo CWE-918
2.170 resultadosCVE-2025-32013CRITICALServer-Side Request Forgery via LNURL Authentication Callback in LNbits Lightning Network Payment SystemEPSS 0.6%CVE-2023-50259MEDIUMBlind SSRF in /home/testslack endpoint EPSS 0.6%CVE-2023-1046MEDIUMMuYuCMS getFile.html server-side request forgeryEPSS 0.6%CVE-2022-45027MEDIUMperfSONAR before 4.4.6, when performing participant discovery, incorrectly uses an HTTP request header value to determine a local address.EPSS 0.6%CVE-2023-45660MEDIUMRequire strict cookies for image proxy requests in Nextcloud MailEPSS 0.6%CVE-2024-39687HIGHFedify vulnerable to allowing access to internal network resourcesEPSS 0.6%CVE-2023-31848HIGHdavinci 0.3.0-rc is vulnerable to Server-side request forgery (SSRF).EPSS 0.6%CVE-2022-4492—The undertow client is not checking the server identity presented by the server certificate in https connections. This is a compulsory step EPSS 0.6%CVE-2023-48379MEDIUMSoftnext Mail SQR Expert - Blind Server-Side Request Forgey (SSRF)EPSS 0.6%CVE-2026-26135CRITICALAzure Custom Locations Resource Provider (RP) Elevation of Privilege VulnerabilityEPSS 0.6%CVE-2023-46730HIGHServer-Side Request Forgery in groupoffice EPSS 0.6%CVE-2024-48874CRITICALRuijie Reyee OS Server-Side Request ForgeryEPSS 0.6%CVE-2022-39276LOWBlind Server-Side Request Forgery (SSRF) in RSS feeds and planningEPSS 0.6%CVE-2023-50266MEDIUMBazarr Blind Server-Side Request Forgery (SSRF) in the /test/<protocol>/ endpointEPSS 0.6%CVE-2023-45966HIGHumputun remark42 version 1.12.1 and before has a Blind Server-Side Request Forgery (SSRF) vulnerability.EPSS 0.6%CVE-2024-27561CRITICALA Server-Side Request Forgery (SSRF) in the installUpdateThemePluginAction function of WonderCMS v3.1.3 allows attackers to force the applicEPSS 0.6%CVE-2025-8228MEDIUMyanyutao0402 ChanCMS getPages server-side request forgeryEPSS 0.6%CVE-2026-32210CRITICALMicrosoft Dynamics 365 (online) Spoofing VulnerabilityEPSS 0.6%CVE-2022-38187HIGHPrevent access to sharing/rest/content/features/analyze to unauthorized usersEPSS 0.6%CVE-2025-5350MEDIUMSSRF and Reflected XSS Vulnerability in Deprecated Try-It Feature of Multiple WSO2 ProductsEPSS 0.6%