Falhas do tipo CWE-918
2.187 resultadosCVE-2025-31824MEDIUMWordPress WP Optin Wheel Plugin <= 1.4.7 - Server Side Request Forgery (SSRF) vulnerabilityEPSS 0.3%CVE-2024-56279MEDIUMWordPress Compact WP Audio Player plugin <= 1.9.14 - Server Side Request Forgery (SSRF) vulnerabilityEPSS 0.3%CVE-2026-27567MEDIUMPayload has Server-Side Request Forgery (SSRF) in External File URL UploadsEPSS 0.3%CVE-2025-65836CRITICALPublicCMS V5.202506.b is vulnerable to SSRF. in the chat interface of SimpleAiAdminController.EPSS 0.3%CVE-2026-2393HIGHServer-Side Request Forgery (SSRF) in mlflow/mlflowEPSS 0.3%CVE-2026-53930MEDIUMNocoDB: Server-Side Request Forgery via Base Migration URLEPSS 0.3%CVE-2026-5832MEDIUMatototo api-lab-mcp HTTP http-server.ts test_http_endpoint server-side request forgeryEPSS 0.3%CVE-2025-52453HIGHServer-Side Request Forgery (SSRF) vulnerability in Salesforce Tableau Server on Windows, Linux (Flow Data Source modules) allows Resource LEPSS 0.3%CVE-2025-52454HIGHServer-Side Request Forgery (SSRF) vulnerability in Salesforce Tableau Server on Windows, Linux (Amazon S3 Connector modules) allows ResourcEPSS 0.3%CVE-2026-5530MEDIUMOllama Model Pull API download.go server-side request forgeryEPSS 0.3%CVE-2025-50251CRITICALServer side request forgery (SSRF) vulnerability in makeplane plane 0.23.1 via the password recovery.EPSS 0.3%CVE-2026-54018HIGHOpen WebUI: SSRF Protection Bypass in Playwright Web Loader via HTTP RedirectsEPSS 0.3%CVE-2026-49138MEDIUMNanobot < 0.2.1 SSRF via web_fetch Tool Redirect FollowingEPSS 0.3%CVE-2025-58175MEDIUMGeoServer has a Server-Side Request Forgery (SSRF) Vulnerability in its XML Entity ResolutionEPSS 0.3%CVE-2026-50887CRITICALA Server-Side Request Forgery (SSRF) in the automatic short URL title resolution component of shlink v5.0.1 allows attackers to scan internaEPSS 0.3%CVE-2026-3216MEDIUMDrupal Canvas - Moderately critical - Server-side request forgery, Information disclosure - SA-CONTRIB-2026-017EPSS 0.3%CVE-2026-49372HIGHIn JetBrains TeamCity before 2026.1,
2025.11.5 unauthenticated SSRF via build status was possibleEPSS 0.3%CVE-2025-11286MEDIUMsamanhappy MCPHub MCPRouter Service serverController.ts server-side request forgeryEPSS 0.3%CVE-2026-46497LOWSSRF via sitemap-derived URLs in Crawlee for PythonEPSS 0.3%CVE-2026-45331HIGHOpen WebUI: Full SSRF Vulnerability in the RAG Web Search FeatureEPSS 0.3%