Falhas do tipo CWE-918
2.197 resultadosCVE-2025-22215MEDIUMVMSA-2025-0001: VMware Aria automation update addresses a server side request forgery vulnerability (CVE-2025-22215)EPSS 0.2%CVE-2026-9204MEDIUMServer-Side Request Forgery (SSRF) in GitLabEPSS 0.2%CVE-2026-46526MEDIUMLocal Deep Research: SSRF bypass in `safe_get`EPSS 0.2%CVE-2025-53641HIGHPostiz allows header mutation in middleware facilitates resulting in SSRFEPSS 0.2%CVE-2026-53812MEDIUMOpenClaw < 2026.5.18 - Private-Network Navigation Bypass via Browser Act InteractionsEPSS 0.2%CVE-2025-66844CRITICALIn grav <1.7.49.5, a SSRF (Server-Side Request Forgery) vector may be triggered via Twig templates when page content is processed by Twig anEPSS 0.2%CVE-2024-44055MEDIUMWordPress Oshine Modules plugin < 3.3.6 - Unauthenticated Server Side Request Forgery (SSRF) vulnerabilityEPSS 0.2%CVE-2026-22245HIGHMastodon has SSRF Protection bypassEPSS 0.2%CVE-2026-2532MEDIUMlintsinghua DeepAudit IP Address embedding_config.py server-side request forgeryEPSS 0.2%CVE-2026-25534CRITICALSpinnaker clouddriver and orca URL validation bypass via underscores in hostnamesEPSS 0.2%CVE-2025-30914MEDIUMWordPress Metform Elementor Contact Form Builder plugin <= 3.9.7 - Server Side Request Forgery (SSRF) vulnerabilityEPSS 0.2%CVE-2026-39843HIGHPlane has a Server-Side Request Forgery (SSRF) in Favicon FetchingEPSS 0.2%CVE-2026-34753MEDIUMvLLM affected by Server-Side Request Forgery (SSRF) in `download_bytes_from_url `EPSS 0.2%CVE-2026-45000LOWOpenClaw < 2026.4.20 - Server-Side Request Forgery via Browser CDP Profile CreationEPSS 0.2%CVE-2025-45250MEDIUMMrDoc v0.95 and before is vulnerable to Server-Side Request Forgery (SSRF) in the validate_url function of the app_doc/utils.py file.EPSS 0.2%CVE-2026-34365HIGHInvoiceShelf: SSRF in Estimate PDF Rendering via Unsanitised HTML in Notes FieldEPSS 0.2%CVE-2026-31017CRITICALA Server-Side Request Forgery (SSRF) vulnerability exists in the Print Format functionality of ERPNext v16.0.1 and Frappe Framework v16.1.1,EPSS 0.2%CVE-2026-23803HIGHWordPress Smart Auto Upload Images plugin <= 1.2.2 - Server Side Request Forgery (SSRF) vulnerabilityEPSS 0.2%CVE-2026-34366HIGHInvoiceShelf: SSRF in Payment Receipt PDF Rendering via Unsanitised HTML in Notes FieldEPSS 0.2%CVE-2026-42591HIGHGotenberg: Server-Side Request Forgery (SSRF) in github.com/gotenberg/gotenberg/v8EPSS 0.2%