Server-Side Request Forgery (SSRF)

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.

CVEs (2,678)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-29556 1Northern.tech 1Mender Nov 21, 2024 Apr 28, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The iot-manager microservice 1.0.0 in Northern.tech Mender Enterprise before 3.2.2 allows SSRF because the Azure IoT Hub integration provides several SSRF primitives that can execute cross-tenant actions via internal API...Show more The iot-manager microservice 1.0.0 in Northern.tech Mender Enterprise before 3.2.2 allows SSRF because the Azure IoT Hub integration provides several SSRF primitives that can execute cross-tenant actions via internal API endpoints.Show less
CVE-2022-28117 1Naviwebs 1Navigate Cms Nov 21, 2024 Apr 28, 2022 N/A· v4 4.9 MEDIUM· v3 4.0 MEDIUM· v2 A Server-Side Request Forgery (SSRF) in feed_parser class of Navigate CMS v2.9.4 allows remote attackers to force the application to make arbitrary requests via injection of arbitrary URLs into the feed parameter.
CVE-2022-27469 1Monstaftp 1Monsta Ftp Nov 21, 2024 Apr 26, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Monstaftp v2.10.3 was discovered to allow attackers to execute Server-Side Request Forgery (SSRF).
CVE-2022-27429 1Jizhicms 1Jizhicms Nov 21, 2024 Apr 25, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Jizhicms v1.9.5 was discovered to contain a Server-Side Request Forgery (SSRF) vulnerability via /admin.php/Plugins/update.html.
CVE-2022-27311 1Gibbon Project 1Gibbon Nov 21, 2024 Apr 25, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Gibbon v3.4.4 and below allows attackers to execute a Server-Side Request Forgery (SSRF) via a crafted URL.
CVE-2021-36203 1Johnsoncontrols 1Metasys System Configuration Tool Nov 21, 2024 Apr 22, 2022 N/A· v4 9.1 CRITICAL· v3 6.4 MEDIUM· v2 The affected product may allow an attacker to identify and forge requests to internal systems by way of a specially crafted request.
CVE-2022-24871 1Shopware 1Shopware Nov 21, 2024 Apr 20, 2022 N/A· v4 5.5 MEDIUM· v3 5.5 MEDIUM· v2 Shopware is an open commerce platform based on Symfony Framework and Vue. In affected versions an attacker can abuse the Admin SDK functionality on the server to read or update internal resources. Users are advised to up...Show more Shopware is an open commerce platform based on Symfony Framework and Vue. In affected versions an attacker can abuse the Admin SDK functionality on the server to read or update internal resources. Users are advised to update to the current version 6.4.10.1. For older versions of 6.1, 6.2, and 6.3, corresponding security measures are also available via a plugin. There are no known workarounds for this issue.Show less
CVE-2022-24862 1Databasir Project 1Databasir Nov 21, 2024 Apr 20, 2022 N/A· v4 7.7 HIGH· v3 4.0 MEDIUM· v2 Databasir is a team-oriented relational database model document management platform. Databasir 1.01 has Server-Side Request Forgery vulnerability. During the download verification process of a JDBC driver the correspondi...Show more Databasir is a team-oriented relational database model document management platform. Databasir 1.01 has Server-Side Request Forgery vulnerability. During the download verification process of a JDBC driver the corresponding JDBC driver download address will be downloaded first, but this address will return a response page with complete error information when accessing a non-existent URL. Attackers can take advantage of this feature for SSRF.Show less
CVE-2022-24825 1Stripe 1Smokescreen Nov 21, 2024 Apr 19, 2022 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 Smokescreen is a simple HTTP proxy that fogs over naughty URLs. The primary use case for Smokescreen is to prevent server-side request forgery (SSRF) attacks in which external attackers leverage the behavior of applicati...Show more Smokescreen is a simple HTTP proxy that fogs over naughty URLs. The primary use case for Smokescreen is to prevent server-side request forgery (SSRF) attacks in which external attackers leverage the behavior of applications to connect to or scan internal infrastructure. Smokescreen also offers an option to deny access to additional (e.g., external) URLs by way of a deny list. There was an issue in Smokescreen that made it possible to bypass the deny list feature by appending a dot to the end of user-supplied URLs, or by providing input in a different letter case. Recommended to upgrade Smokescreen to version 0.0.3 or later.Show less
CVE-2022-29153 2Fedoraproject Hashicorp 2Consul Fedora Nov 21, 2024 Apr 19, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 HashiCorp Consul and Consul Enterprise up to 1.9.16, 1.10.9, and 1.11.4 may allow server side request forgery when the Consul client agent follows redirects returned by HTTP health check endpoints. Fixed in 1.9.17, 1.10....Show more HashiCorp Consul and Consul Enterprise up to 1.9.16, 1.10.9, and 1.11.4 may allow server side request forgery when the Consul client agent follows redirects returned by HTTP health check endpoints. Fixed in 1.9.17, 1.10.10, and 1.11.5.Show less
CVE-2022-1037 1Villatheme 1Exmage Nov 21, 2024 Apr 18, 2022 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 The EXMAGE WordPress plugin before 1.0.7 does to ensure that images added via URLs are external images, which could lead to a blind SSRF issue by using local URLs
CVE-2022-27426 1Chamilo 1Chamilo Lms Nov 21, 2024 Apr 15, 2022 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 A Server-Side Request Forgery (SSRF) in Chamilo LMS v1.11.13 allows attackers to enumerate the internal network and execute arbitrary system commands via a crafted Phar file.
CVE-2022-26499 2Debian Digium 2Asterisk Debian Linux Nov 21, 2024 Apr 15, 2022 N/A· v4 9.1 CRITICAL· v3 6.4 MEDIUM· v2 An SSRF issue was discovered in Asterisk through 19.x. When using STIR/SHAKEN, it's possible to send arbitrary requests (such as GET) to interfaces such as localhost by using the Identity header. This is fixed in 16.25.2...Show more An SSRF issue was discovered in Asterisk through 19.x. When using STIR/SHAKEN, it's possible to send arbitrary requests (such as GET) to interfaces such as localhost by using the Identity header. This is fixed in 16.25.2, 18.11.2, and 19.3.2.Show less
CVE-2022-22339 1Ibm 1Planning Analytics Nov 21, 2024 Apr 8, 2022 N/A· v4 7.3 HIGH· v3 6.5 MEDIUM· v2 IBM Planning Analytics 2.0 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facili...Show more IBM Planning Analytics 2.0 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 219736.Show less
CVE-2021-36202 1Johnsoncontrols 3Metasys Application And Data Server Metasys Extended Application And Data ServerMetasys Open Application Server Nov 21, 2024 Apr 7, 2022 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Server-Side Request Forgery (SSRF) vulnerability in Johnson Controls Metasys could allow an authenticated attacker to inject malicious code into the MUI PDF export feature. This issue affects: Johnson Controls Metasys Al...Show more Server-Side Request Forgery (SSRF) vulnerability in Johnson Controls Metasys could allow an authenticated attacker to inject malicious code into the MUI PDF export feature. This issue affects: Johnson Controls Metasys All 10 versions versions prior to 10.1.5; All 11 versions versions prior to 11.0.2.Show less
CVE-2020-27375 1Drtrustusa 1Icheck Connect Bp Monitor Bp Testing 118 Firmware Nov 21, 2024 Apr 7, 2022 N/A· v4 6.5 MEDIUM· v3 3.3 LOW· v2 Dr Trust USA iCheck Connect BP Monitor BP Testing 118 version 1.2.1 is vulnerable to Transmitting Write Requests and Chars.
CVE-2022-1213 1Livehelperchat 1Live Helper Chat Nov 21, 2024 Apr 5, 2022 N/A· v4 8.1 HIGH· v3 5.5 MEDIUM· v2 SSRF filter bypass port 80, 433 in GitHub repository livehelperchat/livehelperchat prior to 3.67v. An attacker could make the application perform arbitrary requests, bypass CVE-2022-1191
CVE-2022-1188 1Gitlab 1Gitlab Nov 21, 2024 Apr 4, 2022 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.1 before 14.7.7, all versions starting from 14.8 before 14.8.5, all versions starting from 14.9 before 14.9.2 where a blind SSRF attack...Show more An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.1 before 14.7.7, all versions starting from 14.8 before 14.8.5, all versions starting from 14.9 before 14.9.2 where a blind SSRF attack through the repository mirroring feature was possible.Show less
CVE-2022-0990 1Janeczku 1Calibre Web Nov 21, 2024 Apr 4, 2022 N/A· v4 9.1 CRITICAL· v3 6.4 MEDIUM· v2 Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web prior to 0.6.18.
CVE-2022-0939 1Janeczku 1Calibre Web Nov 21, 2024 Apr 4, 2022 N/A· v4 9.9 CRITICAL· v3 7.5 HIGH· v2 Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web prior to 0.6.18.

Previous 1...104105106...134 Next