Falhas do tipo CWE-918
2.198 resultadosCVE-2024-39637MEDIUMWordPress Edubin theme <= 9.2.0 - Server Side Request Forgery (SSRF) vulnerabilityEPSS 0.2%CVE-2026-39383MEDIUMGotenberg unauthenticated blind SSRF via unfiltered webhook URLEPSS 0.2%CVE-2026-44284MEDIUMFastGPT: Stored MCP tool URL SSRF in FastGPT workflow executionEPSS 0.2%CVE-2023-50952MEDIUMIBM InfoSphere Information Server server-side request forgeryEPSS 0.2%CVE-2025-47437MEDIUMWordPress LiteSpeed Cache plugin <= 7.0.1 - Server Side Request Forgery (SSRF) vulnerabilityEPSS 0.2%CVE-2026-30844CRITICALWekan Vulnerable to SSRF through Lack of Validation or Filtering in Attachment URL LoadingEPSS 0.2%CVE-2026-44694HIGHn8n-MCP: Authenticated SSRF in n8n-mcp webhook and API client pathsEPSS 0.2%CVE-2026-44797HIGHNautobot: Webhook definitions could be used for server-side request forgery (SSRF)EPSS 0.2%CVE-2025-8675MEDIUMAI SEO Link Advisor - Less critical - Server-side Request Forgery - SA-CONTRIB-2025-095EPSS 0.2%CVE-2026-34360MEDIUMHAPI FHIR: Unauthenticated Blind SSRF via /loadIG Endpoint Enables Internal Network ProbingEPSS 0.2%CVE-2026-27732HIGHAVideo has Authenticated Server-Side Request Forgery via downloadURL in aVideoEncoder.json.phpEPSS 0.2%CVE-2026-41270HIGHFlowise: SSRF Protection Bypass via Unprotected Built-in HTTP Modules in Custom Function SandboxEPSS 0.2%CVE-2026-48858MEDIUMftp client PASV response IP not validated against control peer, enabling SSRF and FTP bounce attacksEPSS 0.2%CVE-2026-46697HIGHFediverse Embeds: Unauthenticated SSRF / open proxy via REST media-proxy endpointEPSS 0.2%CVE-2026-2479MEDIUMResponsive Lightbox & Gallery <= 2.7.1 - Authenticated (Author+) Server-Side Request Forgery via Remote Library Image UploadEPSS 0.2%CVE-2026-27759MEDIUMFeatured Image from Content < 1.7 Authenticated SSRF via save_postEPSS 0.2%CVE-2026-39362MEDIUMInvenTree has SSRF via Remote Image Download — No IP/Hostname Validation on remote_image URLsEPSS 0.2%CVE-2024-13360MEDIUMAI Power: Complete AI Pack <= 1.8.96 - Authenticated (Subscriber+) Server-Side Request ForgeryEPSS 0.2%CVE-2024-51785MEDIUMWordPress Responsive Filterable Portfolio plugin <= 1.0.22 - Server Side Request Forgery (SSRF) vulnerabilityEPSS 0.2%CVE-2026-33766MEDIUMAVideo has SSRF Protection Bypass via HTTP Redirect in Image Download EndpointsEPSS 0.2%