Server-Side Request Forgery (SSRF)

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.

CVEs (2,678)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-0425 1Gitlab 1Gitlab Nov 21, 2024 Apr 1, 2022 N/A· v4 7.6 HIGH· v3 6.5 MEDIUM· v2 A DNS rebinding vulnerability in the Irker IRC Gateway integration in all versions of GitLab CE/EE since version 7.9 allows an attacker to trigger Server Side Request Forgery (SSRF) attacks.
CVE-2022-1191 1Livehelperchat 1Live Helper Chat Nov 21, 2024 Mar 31, 2022 N/A· v4 8.1 HIGH· v3 5.5 MEDIUM· v2 SSRF on index.php/cobrowse/proxycss/ in GitHub repository livehelperchat/livehelperchat prior to 3.96.
CVE-2021-33581 1Softwareag 1Mashzone Nextgen Nov 21, 2024 Mar 30, 2022 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 MashZone NextGen through 10.7 GA has an SSRF vulnerability that allows an attacker to interact with arbitrary TCP services, by abusing the feature to check the availability of a PPM connection. This occurs in com.idssche...Show more MashZone NextGen through 10.7 GA has an SSRF vulnerability that allows an attacker to interact with arbitrary TCP services, by abusing the feature to check the availability of a PPM connection. This occurs in com.idsscheer.ppmmashup.web.webservice.impl.ZPrestoAdminWebService.Show less
CVE-2022-27907 1Sonatype 1Nexus Repository Manager Nov 21, 2024 Mar 30, 2022 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 Sonatype Nexus Repository Manager 3.x before 3.38.0 allows SSRF.
CVE-2022-24789 1Orckestra 1C1 Cms Nov 21, 2024 Mar 28, 2022 N/A· v4 7.6 HIGH· v3 6.5 MEDIUM· v2 C1 CMS is an open-source, .NET based Content Management System (CMS). Versions prior to 6.12 allow an authenticated user to exploit Server Side Request Forgery (SSRF) by causing the server to make arbitrary GET requests...Show more C1 CMS is an open-source, .NET based Content Management System (CMS). Versions prior to 6.12 allow an authenticated user to exploit Server Side Request Forgery (SSRF) by causing the server to make arbitrary GET requests to other servers in the local network or on localhost. The attacker may also truncate arbitrary files to zero size (effectively delete them) leading to denial of service (DoS) or altering application logic. The authenticated user may unknowingly perform the actions by visiting a specially crafted site. Patched in C1 CMS v6.12, no known workarounds exist.Show less
CVE-2022-0249 1Gitlab 1Gitlab Nov 21, 2024 Mar 28, 2022 N/A· v4 9.1 CRITICAL· v3 6.4 MEDIUM· v2 A vulnerability was discovered in GitLab starting with version 12. GitLab was vulnerable to a blind SSRF attack since requests to shared address space were not blocked.
CVE-2022-0136 1Gitlab 1Gitlab Nov 21, 2024 Mar 28, 2022 N/A· v4 8.1 HIGH· v3 5.5 MEDIUM· v2 A vulnerability was discovered in GitLab versions 10.5 to 14.5.4, 14.6 to 14.6.4, and 14.7 to 14.7.1. GitLab was vulnerable to a blind SSRF attack through the Project Import feature.
CVE-2021-44139 1Hashicorp 1Sentinel Nov 21, 2024 Mar 23, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Sentinel 1.8.2 is vulnerable to Server-side request forgery (SSRF).
CVE-2022-0591 1Subtlewebinc 1Formcraft3 Nov 21, 2024 Mar 21, 2022 N/A· v4 9.1 CRITICAL· v3 6.4 MEDIUM· v2 The FormCraft WordPress plugin before 3.8.28 does not validate the URL parameter in the formcraft3_get AJAX action, leading to SSRF issues exploitable by unauthenticated users
CVE-2022-27245 1Misp 1Misp Nov 21, 2024 Mar 18, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 An issue was discovered in MISP before 2.4.156. app/Model/Server.php does not restrict generateServerSettings to the CLI. This could lead to SSRF.
CVE-2021-45968 2Jivesoftware Pascom 2Cloud Phone System Jive Nov 21, 2024 Mar 18, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in xmppserver jar in the XMPP Server component of the JIve platform, as used in Pascom Cloud Phone System before 7.20.x (and in other products). An endpoint in the backend Tomcat server of the Pas...Show more An issue was discovered in xmppserver jar in the XMPP Server component of the JIve platform, as used in Pascom Cloud Phone System before 7.20.x (and in other products). An endpoint in the backend Tomcat server of the Pascom allows SSRF, a related issue to CVE-2019-18394.Show less
CVE-2021-46107 1Ligeo Archives 1Ligeo Basics Nov 21, 2024 Mar 17, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Ligeo Archives Ligeo Basics as of 02_01-2022 is vulnerable to Server Side Request Forgery (SSRF) which allows an attacker to read any documents via the download features.
CVE-2021-45851 1Frangoteam 1Fuxa Nov 21, 2024 Mar 16, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 A Server-Side Request Forgery (SSRF) attack in FUXA 1.1.3 can be carried out leading to the obtaining of sensitive information from the server's internal environment and services, often potentially leading to the attacke...Show more A Server-Side Request Forgery (SSRF) attack in FUXA 1.1.3 can be carried out leading to the obtaining of sensitive information from the server's internal environment and services, often potentially leading to the attacker executing commands on the server.Show less
CVE-2021-39051 1Ibm 1Spectrum Copy Data Management Nov 21, 2024 Mar 14, 2022 N/A· v4 6.5 MEDIUM· v3 6.4 MEDIUM· v2 IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.14.3 is vulnerable to server-side request forgery, caused by improper input of application server registration function. A remote attacker could exploit this vulnerab...Show more IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.14.3 is vulnerable to server-side request forgery, caused by improper input of application server registration function. A remote attacker could exploit this vulnerability using the host address and port fields of the application server registration form in the portal UI to enumerate and attack services that are running on those hosts. IBM X-Force ID: 214441.Show less
CVE-2021-43954 1Atlassian 2Crucible Fisheye Nov 21, 2024 Mar 14, 2022 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 The DefaultRepositoryAdminService class in Fisheye and Crucible before version 4.8.9 allowed remote attackers, who have 'can add repository permission', to enumerate the existence of internal network and filesystem resou...Show more The DefaultRepositoryAdminService class in Fisheye and Crucible before version 4.8.9 allowed remote attackers, who have 'can add repository permission', to enumerate the existence of internal network and filesystem resources via a Server-Side Request Forgery (SSRF) vulnerability.Show less
CVE-2022-0870 1Gogs 1Gogs Nov 21, 2024 Mar 11, 2022 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 Server-Side Request Forgery (SSRF) in GitHub repository gogs/gogs prior to 0.12.5.
CVE-2018-25031 1Smartbear 1Swagger Ui Nov 21, 2024 Mar 11, 2022 N/A· v4 4.3 MEDIUM· v3 4.3 MEDIUM· v2 Swagger UI 4.1.2 and earlier could allow a remote attacker to conduct spoofing attacks. By persuading a victim to open a crafted URL, an attacker could exploit this vulnerability to display remote OpenAPI definitions. No...Show more Swagger UI 4.1.2 and earlier could allow a remote attacker to conduct spoofing attacks. By persuading a victim to open a crafted URL, an attacker could exploit this vulnerability to display remote OpenAPI definitions. Note: This was originally claimed to be resolved in 4.1.3. However, third parties have indicated this is not resolved in 4.1.3 and even occurs in that version and possibly others.Show less
CVE-2022-24739 1Alltube Project 1Alltube Nov 21, 2024 Mar 8, 2022 N/A· v4 6.1 MEDIUM· v3 4.0 MEDIUM· v2 alltube is an html front end for youtube-dl. On releases prior to 3.0.3, an attacker could craft a special HTML page to trigger either an open redirect attack or a Server-Side Request Forgery attack (depending on how All...Show more alltube is an html front end for youtube-dl. On releases prior to 3.0.3, an attacker could craft a special HTML page to trigger either an open redirect attack or a Server-Side Request Forgery attack (depending on how AllTube is configured). The impact is mitigated by the fact the SSRF attack is only possible when the `stream` option is enabled in the configuration. (This option is disabled by default.) 3.0.3 contains a fix for this vulnerability.Show less
CVE-2022-0767 1Janeczku 1Calibre Web Nov 21, 2024 Mar 7, 2022 N/A· v4 9.9 CRITICAL· v3 7.5 HIGH· v2 Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web prior to 0.6.17.
CVE-2022-0766 1Janeczku 1Calibre Web Nov 21, 2024 Mar 7, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web prior to 0.6.17.

Previous 1...105106107...134 Next