Falhas do tipo CWE-918

2.184 resultados
CVE-2026-34740MEDIUMAVideo: Stored SSRF via Video EPG Link Missing isSSRFSafeURL() ValidationEPSS 0.3%CVE-2024-50337MEDIUMChamilo: Potential unauthenticated blind SSRF via openid functionEPSS 0.3%CVE-2025-66405MEDIUMPortkey.ai Gateway: Server-Side Request Forgery (SSRF) in Custom HostEPSS 0.3%CVE-2025-20288MEDIUMCisco Unified Intelligence Center Server-Side Request Forgery VulnerabilityEPSS 0.3%CVE-2025-2835MEDIUMzhangyd-c OneBlog RestApiController.java autoLink server-side request forgeryEPSS 0.3%CVE-2023-34370HIGHServer Side Request Forgery (SSRF) vulnerability in Starter Templates pluginsEPSS 0.3%CVE-2024-4404HIGHElementsKit PRO <= 3.6.1 - Authenticated (Contributor+) Server-Side Request ForgeryEPSS 0.3%CVE-2019-25290MEDIUMINIM Electronics Smartliving SmartLAN/G/SI <=6.x Unauthenticated SSRF via GetImageEPSS 0.3%CVE-2026-4623MEDIUMDefaultFuction Jeson-Customer-Relationship-Management-System API Module System.php server-side request forgeryEPSS 0.3%CVE-2026-7146MEDIUMAlejandroArciniegas mcp-data-vis HTTP Request server.js axios server-side request forgeryEPSS 0.3%CVE-2025-59837HIGHastro allows bypass of image proxy domain validation leading to SSRF and potential XSSEPSS 0.3%CVE-2026-7094MEDIUMShadowCloneLabs GlutamateMCPServers puppeteer_navigate index.ts server-side request forgeryEPSS 0.3%CVE-2026-33480HIGHAVideo has a SSRF Protection Bypass via IPv4-Mapped IPv6 Addresses in Unauthenticated LiveLinks ProxyEPSS 0.3%CVE-2026-39885HIGHFrontMCP Affected by SSRF via $ref Dereferencing in Untrusted OpenAPI SpecificationsEPSS 0.3%CVE-2025-52455MEDIUMServer-Side Request Forgery (SSRF) vulnerability in Salesforce Tableau Server on Windows, Linux (EPS Server modules) allows Resource LocatioEPSS 0.3%CVE-2019-25451MEDIUMphpMoAdmin 1.1.5 Cross-Site Request Forgery via moadmin.phpEPSS 0.3%CVE-2025-45474HIGHmaccms10 v2025.1000.4047 is vulnerable to Server-side request forgery (SSRF) in Email Settings.EPSS 0.3%CVE-2025-54132MEDIUMCursor's Mermaid Diagram Tool is Vulnerable to an Arbitrary Image FetchEPSS 0.3%CVE-2026-44439MEDIUMLookyLoo - PlaywrightCapture permits access to local files and internal network resources during page captureEPSS 0.3%CVE-2025-10395MEDIUMMagicblack MacCMS Scheduled Task col_url server-side request forgeryEPSS 0.3%