Vulnerabilities > Server-Side Request Forgery (SSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-31 | CVE-2024-21893 | Server-Side Request Forgery (SSRF) vulnerability in Ivanti Connect Secure and Policy Secure A server-side request forgery vulnerability in the SAML component of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) and Ivanti Neurons for ZTA allows an attacker to access certain restricted resources without authentication. | 8.2 |
| 2024-01-31 | CVE-2023-47116 | Server-Side Request Forgery (SSRF) vulnerability in Humansignal Label Studio Label Studio is a popular open source data labeling tool. | 5.3 |
| 2024-01-30 | CVE-2024-23825 | Server-Side Request Forgery (SSRF) vulnerability in Tablepress TablePress is a table plugin for Wordpress. | 4.9 |
| 2024-01-30 | CVE-2024-1063 | Server-Side Request Forgery (SSRF) vulnerability in Appwrite Appwrite <= v1.4.13 is affected by a Server-Side Request Forgery (SSRF) via the '/v1/avatars/favicon' endpoint due to an incomplete fix of CVE-2023-27159. | 7.5 |
| 2024-01-30 | CVE-2024-22648 | Server-Side Request Forgery (SSRF) vulnerability in Seopanel SEO Panel 4.10.0 A Blind SSRF vulnerability exists in the "Crawl Meta Data" functionality of SEO Panel version 4.10.0. | 5.3 |
| 2024-01-29 | CVE-2024-1021 | Server-Side Request Forgery (SSRF) vulnerability in Ruifang-Tech Rebuild A vulnerability, which was classified as critical, has been found in Rebuild up to 3.5.5. | 9.8 |
| 2024-01-26 | CVE-2024-0945 | Server-Side Request Forgery (SSRF) vulnerability in 60Indexpage Project 60Indexpage A vulnerability classified as critical has been found in 60IndexPage up to 1.8.5. | 9.8 |
| 2024-01-26 | CVE-2024-0946 | Server-Side Request Forgery (SSRF) vulnerability in 60Indexpage Project 60Indexpage A vulnerability classified as critical was found in 60IndexPage up to 1.8.5. | 9.8 |
| 2024-01-23 | CVE-2023-38624 | Server-Side Request Forgery (SSRF) vulnerability in Trendmicro Apex Central 2019 A post-authenticated server-side request forgery (SSRF) vulnerability in Trend Micro Apex Central 2019 (lower than build 6481) could allow an attacker to interact with internal or local services directly. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. This is a similar, but not identical vulnerability as CVE-2023-38625 through CVE-2023-38627. | 5.4 |
| 2024-01-23 | CVE-2023-38625 | Server-Side Request Forgery (SSRF) vulnerability in Trendmicro Apex Central 2019 A post-authenticated server-side request forgery (SSRF) vulnerability in Trend Micro Apex Central 2019 (lower than build 6481) could allow an attacker to interact with internal or local services directly. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. This is a similar, but not identical vulnerability as CVE-2023-38624. | 5.4 |