Vulnerabilities > Server-Side Request Forgery (SSRF)

DATE	CVE	VULNERABILITY TITLE	RISK
2023-11-21	CVE-2023-48306	Server-Side Request Forgery (SSRF) vulnerability in Nextcloud Server Nextcloud Server provides data storage for Nextcloud, an open source cloud platform. network low complexity nextcloud CWE-918 critical	9.8
2023-11-20	CVE-2023-6199	Server-Side Request Forgery (SSRF) vulnerability in Bookstackapp Bookstack 23.10.2 Book Stack version 23.10.2 allows filtering local files on the server. network low complexity bookstackapp CWE-918	6.5
2023-11-20	CVE-2023-48240	Server-Side Request Forgery (SSRF) vulnerability in Xwiki XWiki Platform is a generic wiki platform. network low complexity xwiki CWE-918	8.8
2023-11-16	CVE-2023-48204	Server-Side Request Forgery (SSRF) vulnerability in Publiccms 4.0.202302.E An issue in PublicCMS v.4.0.202302.e allows a remote attacker to obtain sensitive information via the appToken and Parameters parameter of the api/method/getHtml component. network low complexity publiccms CWE-918	6.5
2023-11-14	CVE-2023-6124	Server-Side Request Forgery (SSRF) vulnerability in Salesagility Suitecrm Server-Side Request Forgery (SSRF) in GitHub repository salesagility/suitecrm prior to 7.14.2, 8.4.2, 7.12.14. network low complexity salesagility CWE-918	4.3
2023-11-13	CVE-2023-46207	Server-Side Request Forgery (SSRF) vulnerability in Stylemixthemes Motors - CAR Dealer, Classifieds & Listing Server-Side Request Forgery (SSRF) vulnerability in StylemixThemes Motors – Car Dealer, Classifieds & Listing.This issue affects Motors – Car Dealer, Classifieds & Listing: from n/a through 1.4.6. network low complexity stylemixthemes CWE-918	7.5
2023-11-07	CVE-2023-42361	Server-Side Request Forgery (SSRF) vulnerability in Midori-Global Better PDF Exporter 10.0.0/10.3.0 Local File Inclusion vulnerability in Midori-global Better PDF Exporter for Jira Server and Jira Data Center v.10.3.0 and before allows an attacker to view arbitrary files and cause other impacts via use of crafted image during PDF export. local low complexity midori-global CWE-918	7.8
2023-11-03	CVE-2022-3172	Server-Side Request Forgery (SSRF) vulnerability in Kubernetes Apiserver A security issue was discovered in kube-apiserver that allows an aggregated API server to redirect client traffic to any URL. network low complexity kubernetes CWE-918	8.2
2023-11-03	CVE-2023-43982	Server-Side Request Forgery (SSRF) vulnerability in Bontheme Socialfeed - Photos & Video Using Instagram API 5.2.1/5.2.3/6.0.0 Bon Presta boninstagramcarousel between v5.2.1 to v7.0.0 was discovered to contain a Server-Side Request Forgery (SSRF) via the url parameter at insta_parser.php. network low complexity bontheme CWE-918 critical	9.8
2023-11-03	CVE-2023-35896	Server-Side Request Forgery (SSRF) vulnerability in IBM Content Navigator 3.0.13 IBM Content Navigator 3.0.13 is vulnerable to server-side request forgery (SSRF). network low complexity ibm CWE-918	5.4