Falhas do tipo CWE-918

2.203 resultados
CVE-2026-12726MEDIUMAwx: automation-controller: awx: github webhook second-order ssrf via unvalidated statuses_url exfiltrates pat credentialEPSS 0.2%CVE-2026-41687MEDIUMWallos: SSRF CGNAT Bypass in subscription/payments Logo URL — is_cgnat_ip() Not Used in Inline ChecksEPSS 0.2%CVE-2025-42907MEDIUMServer-Side Request Forgery in SAP BI PlatformEPSS 0.2%CVE-2026-56771MEDIUMNewsBlur < 14.5.0 - Server-Side Request Forgery via add_url EndpointEPSS 0.2%CVE-2025-64752MEDIUMgrist-core has path to server-side requests via websocketEPSS 0.2%CVE-2026-54008HIGHOpen WebUI: Redirect-Bypass SSRF in OAuth `_process_picture_url`EPSS 0.2%CVE-2026-25883MEDIUMVexa Webhook Feature has a SSRF VulnerabilityEPSS 0.2%CVE-2024-36458MEDIUMSymantec Privileged Access Manager Privilege Escalation vulnerabilityEPSS 0.2%CVE-2024-55910MEDIUMIBM Concert Software server-side request forgeryEPSS 0.2%CVE-2026-54353HIGHBudibase: Potential SSRF DNS rebinding bypass in outbound fetch validationEPSS 0.2%CVE-2025-28987MEDIUMWordPress PressForward <= 5.9.4 - Server Side Request Forgery (SSRF) vulnerabilityEPSS 0.2%CVE-2025-62741MEDIUMWordPress Pool Services theme <= 3.3 - Server Side Request Forgery (SSRF) vulnerabilityEPSS 0.2%CVE-2026-24048LOWBackstage has a Possible SSRF when reading from allowed URL's in `backend.reading.allow`EPSS 0.2%CVE-2026-2558MEDIUMGeekAI net_handler.go Download server-side request forgeryEPSS 0.2%CVE-2026-0688MEDIUMWebmention <= 5.6.2 - Authenticated (Subscriber+) Server-Side Request ForgeryEPSS 0.2%CVE-2026-3958MEDIUMWoahai321 ListSync JSON api_server.py requests.post server-side request forgeryEPSS 0.2%CVE-2026-7150MEDIUMdh1011 auto-favicon MCP Tool server.py generate_favicon_from_url server-side request forgeryEPSS 0.2%CVE-2026-12813MEDIUMactivepieces File URL file.ts handleUrlFile server-side request forgeryEPSS 0.2%CVE-2026-10581MEDIUMDedeCMS download.php base64_decode server-side request forgeryEPSS 0.2%CVE-2026-6744MEDIUMBagisto Downloadable Link copy server-side request forgeryEPSS 0.2%