Server-Side Request Forgery (SSRF)

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.

CVEs (2,642)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2019-6837 1Schneider Electric 4Meg6260 0410 Firmware Meg6260 0415 FirmwareMeg6501 0001 Firmware+1 more Nov 21, 2024 Sep 17, 2019 N/A· v4 9.1 CRITICAL· v3 6.4 MEDIUM· v2 A Server-Side Request Forgery (SSRF): CWE-918 vulnerability exists in U.motion Server (MEG6501-0001 - U.motion KNX server, MEG6501-0002 - U.motion KNX Server Plus, MEG6260-0410 - U.motion KNX Server Plus, Touch 10, MEG62...Show more A Server-Side Request Forgery (SSRF): CWE-918 vulnerability exists in U.motion Server (MEG6501-0001 - U.motion KNX server, MEG6501-0002 - U.motion KNX Server Plus, MEG6260-0410 - U.motion KNX Server Plus, Touch 10, MEG6260-0415 - U.motion KNX Server Plus, Touch 15), which could cause server configuration data to be exposed when an attacker modifies a URL.Show less
CVE-2019-15731 1Gitlab 1Gitlab Nov 21, 2024 Sep 16, 2019 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An issue was discovered in GitLab Community and Enterprise Edition 12.0 through 12.2.1. Non-members were able to comment on merge requests despite the repository being set to allow only project members to do so.
CVE-2019-15730 1Gitlab 1Gitlab Nov 21, 2024 Sep 16, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in GitLab Community and Enterprise Edition 8.14 through 12.2.1. The Jira integration contains a SSRF vulnerability as a result of a bypass of the current protection mechanisms against this type of...Show more An issue was discovered in GitLab Community and Enterprise Edition 8.14 through 12.2.1. The Jira integration contains a SSRF vulnerability as a result of a bypass of the current protection mechanisms against this type of attack, which would allow sending requests to any resources accessible in the local network by the GitLab server.Show less
CVE-2019-15728 1Gitlab 1Gitlab Nov 21, 2024 Sep 16, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in GitLab Community and Enterprise Edition 10.1 through 12.2.1. Protections against SSRF attacks on the Kubernetes integration are insufficient, which could have allowed an attacker to request any...Show more An issue was discovered in GitLab Community and Enterprise Edition 10.1 through 12.2.1. Protections against SSRF attacks on the Kubernetes integration are insufficient, which could have allowed an attacker to request any local network resource accessible from the GitLab server.Show less
CVE-2019-8451 1Atlassian 1Jira Server Nov 21, 2024 Sep 11, 2019 N/A· v4 6.5 MEDIUM· v3 6.4 MEDIUM· v2 The /plugins/servlet/gadgets/makeRequest resource in Jira before version 8.4.0 allows remote attackers to access the content of internal network resources via a Server Side Request Forgery (SSRF) vulnerability due to a l...Show more The /plugins/servlet/gadgets/makeRequest resource in Jira before version 8.4.0 allows remote attackers to access the content of internal network resources via a Server Side Request Forgery (SSRF) vulnerability due to a logic bug in the JiraWhitelist class.Show less
CVE-2019-12996 1Mendix 1Mendix Nov 21, 2024 Sep 10, 2019 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 In Mendix 7.23.5 and earlier, issue in XML import mappings allow DOCTYPE declarations in the XML input that is potentially unsafe.
CVE-2019-6793 1Gitlab 1Gitlab Nov 21, 2024 Sep 9, 2019 N/A· v4 7.0 HIGH· v3 6.8 MEDIUM· v2 An issue was discovered in GitLab Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. The Jira integration feature is vulnerable to an unauthenticated blind SSRF issue.
CVE-2019-12633 1Cisco 1Unified Contact Center Express Nov 21, 2024 Sep 5, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 A vulnerability in Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side request forgery (SSRF) attack on a targeted system...Show more A vulnerability in Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side request forgery (SSRF) attack on a targeted system. The vulnerability is due to improper validation of user-supplied input on the affected system. An attacker could exploit this vulnerability by sending the user of the web application a crafted request. If the request is processed, the attacker could access the system and perform unauthorized actions.Show less
CVE-2019-12632 1Cisco 1Finesse Nov 21, 2024 Sep 5, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 A vulnerability in Cisco Finesse could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side request forgery (SSRF) attack on an affected system. The vulnerability exists because t...Show more A vulnerability in Cisco Finesse could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side request forgery (SSRF) attack on an affected system. The vulnerability exists because the affected system does not properly validate user-supplied input. An attacker could exploit this vulnerability by sending a crafted request to a user of the web application. A successful exploit could allow the attacker to access the system and perform unauthorized actions.Show less
CVE-2019-13020 1Trms 1Tightrope Media Carousel Nov 21, 2024 Aug 26, 2019 N/A· v4 10.0 CRITICAL· v3 6.4 MEDIUM· v2 The fetch API in Tightrope Media Carousel before 7.1.3 has CarouselAPI/v0/fetch?url= SSRF. This has two potential areas for abuse. First, a specially crafted URL could be used in a phishing attack to hijack the trust the...Show more The fetch API in Tightrope Media Carousel before 7.1.3 has CarouselAPI/v0/fetch?url= SSRF. This has two potential areas for abuse. First, a specially crafted URL could be used in a phishing attack to hijack the trust the user and the browser have with the website and could serve malicious content from a third-party attacker-controlled system. Second, arguably more severe, is the potential for an attacker to circumvent firewall controls, by proxying traffic, unauthenticated, into the internal network from the internet.Show less
CVE-2019-15494 1It Novum 1Openitcockpit Nov 21, 2024 Aug 23, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 openITCOCKPIT before 3.7.1 allows SSRF, aka RVID 5-445b21.
CVE-2016-10927 1Neliosoftware 1Nelio Ab Testing Nov 21, 2024 Aug 22, 2019 N/A· v4 10.0 CRITICAL· v3 6.4 MEDIUM· v2 The nelio-ab-testing plugin before 4.5.11 for WordPress has SSRF in ajax/iesupport.php.
CVE-2016-10926 1Neliosoftware 1Nelio Ab Testing Nov 21, 2024 Aug 22, 2019 N/A· v4 10.0 CRITICAL· v3 6.4 MEDIUM· v2 The nelio-ab-testing plugin before 4.5.9 for WordPress has SSRF in ajax/iesupport.php.
CVE-2019-11897 1Bosch 2Iot Gateway Software Prosyst Mbs Sdk Nov 21, 2024 Aug 21, 2019 N/A· v4 8.6 HIGH· v3 5.0 MEDIUM· v2 A Server-Side Request Forgery (SSRF) vulnerability in the backup & restore functionality in earlier versions than ProSyst mBS SDK 8.2.6 and Bosch IoT Gateway Software 9.3.0 allows a remote attacker to forge GET requests...Show more A Server-Side Request Forgery (SSRF) vulnerability in the backup & restore functionality in earlier versions than ProSyst mBS SDK 8.2.6 and Bosch IoT Gateway Software 9.3.0 allows a remote attacker to forge GET requests to arbitrary URLs. In addition, this could potentially allow an attacker to read sensitive zip files from the local server.Show less
CVE-2019-0345 1Sap 1Netweaver Application Server Java Nov 21, 2024 Aug 14, 2019 N/A· v4 9.8 CRITICAL· v3 5.0 MEDIUM· v2 A remote unauthenticated attacker can abuse a web service in SAP NetWeaver Application Server for Java (Administrator System Overview), versions 7.30, 7.31, 7.40, 7.50, by sending a specially crafted XML file and trick t...Show more A remote unauthenticated attacker can abuse a web service in SAP NetWeaver Application Server for Java (Administrator System Overview), versions 7.30, 7.31, 7.40, 7.50, by sending a specially crafted XML file and trick the application server into leaking authentication credentials for its own SAP Management console, resulting in Server-Side Request Forgery.Show less
CVE-2019-12994 1Zohocorp 1Manageengine Assetexplorer Nov 21, 2024 Aug 8, 2019 N/A· v4 9.1 CRITICAL· v3 6.5 MEDIUM· v2 Server Side Request Forgery (SSRF) exists in Zoho ManageEngine AssetExplorer version 6.2.0 for the AJaxServlet servlet via a parameter in a URL.
CVE-2019-12959 1Zohocorp 1Manageengine Assetexplorer Nov 21, 2024 Aug 8, 2019 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Server Side Request Forgery (SSRF) exists in Zoho ManageEngine AssetExplorer 6.2.0 and before for the ClientUtilServlet servlet via a URL in a parameter.
CVE-2019-14255 1Go Camo Project 1Go Camo Nov 21, 2024 Aug 8, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A Server Side Request Forgery (SSRF) vulnerability in go-camo up to version 1.1.4 allows a remote attacker to perform HTTP requests to internal endpoints.
CVE-2019-14704 1Microdigital 3Mdc N2190v Firmware Mdc N4090 FirmwareMdc N4090w Firmware Nov 21, 2024 Aug 6, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An SSRF issue was discovered in HTTPD on MicroDigital N-series cameras with firmware through 6400.0.8.5 via FTP commands following a newline character in the uploadfile field.
CVE-2019-7923 1Magento 1Magento Nov 21, 2024 Aug 2, 2019 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 A server-side request forgery (SSRF) vulnerability exists in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This can be exploited by authenticated user with admin privileges to manip...Show more A server-side request forgery (SSRF) vulnerability exists in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This can be exploited by authenticated user with admin privileges to manipulate shipment settings to execute arbitrary code.Show less

Previous 1...122123124...133 Next