Falhas do tipo CWE-918
2.185 resultadosCVE-2023-3577LOWLimited blind SSRF to localhost/intranet in interactive dialog implementationEPSS 0.3%CVE-2023-47635MEDIUMDecidim vulnerable to possible CSRF attack at questionnaire templates previewEPSS 0.3%CVE-2026-2556MEDIUMcskefu Endpoint MediaController.java server-side request forgeryEPSS 0.3%CVE-2026-1273HIGHPostX <= 5.0.8 - Authenticated (Administrator+) Server-Side Request Forgery via REST API EndpointsEPSS 0.3%CVE-2026-42595HIGHGotenberg: Server-Side Request Forgery via Chromium URL Endpoint with Redirect-Based Deny-List BypassEPSS 0.3%CVE-2025-9975MEDIUMWP Scraper <= 5.8.1 - Authenticated (Administrator+) Server-Side Request ForgeryEPSS 0.3%CVE-2026-42184MEDIUMTauri: Origin Confusion Allows Remote Pages to Invoke Local-Only IPC CommandsEPSS 0.3%CVE-2026-11989MEDIUMBit integrations <= 2.8.7 - Unauthenticated Server-Side Request Forgery via Form Field Upload MappingEPSS 0.3%CVE-2026-3286MEDIUMitwanger paicoding Image Save Endpoint ImageRestController.java save server-side request forgeryEPSS 0.3%CVE-2025-53371CRITICALDiscordNotifications allows DOS, SSRF, and possible RCE through requests to user-controlled URLsEPSS 0.3%CVE-2026-35032HIGHJellyfin: Potential SSRF + Arbitrary file read via LiveTV M3U tunerEPSS 0.3%CVE-2023-46641MEDIUMWordPress 12 Step Meeting List Plugin <= 3.14.24 is vulnerable to Server Side Request Forgery (SSRF)EPSS 0.3%CVE-2024-48951HIGHAn issue was discovered in Logpoint before 7.5.0. Server-Side Request Forgery (SSRF) on SOAR can be used to leak Logpoint's API Token leadinEPSS 0.3%CVE-2024-40625MEDIUMGeoServer Coverage REST API Allows Server Side Request ForgeryEPSS 0.3%CVE-2025-14518MEDIUMPowerJob Network Request PingPongUtils.java checkConnectivity server-side request forgeryEPSS 0.3%CVE-2025-27232MEDIUMFrontend arbitrary file read in oauth.authorize actionEPSS 0.3%CVE-2025-10760MEDIUMHarness lookup_repo.go LookupRepo server-side request forgeryEPSS 0.3%CVE-2025-24703MEDIUMWordPress Comment Edit Core – Simple Comment Editing Plugin <= 3.0.33 - Server Side Request Forgery (SSRF) vulnerabilityEPSS 0.3%CVE-2025-40595HIGHA Server-side request forgery (SSRF) vulnerability has been identified in the SMA1000 Appliance Work Place interface. By using an encoded UREPSS 0.3%CVE-2025-9269MEDIUMServer-Side Request Forgery (SSRF) vulnerability found in embedded web serverEPSS 0.3%