Vulnerabilities > Server-Side Request Forgery (SSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-03-14 | CVE-2024-1884 | Server-Side Request Forgery (SSRF) vulnerability in Papercut MF This is a Server-Side Request Forgery (SSRF) vulnerability in the PaperCut NG/MF server-side module that allows an attacker to induce the server-side application to make HTTP requests to an arbitrary domain of the attacker's choosing. | 6.5 |
| 2024-03-12 | CVE-2023-49785 | Server-Side Request Forgery (SSRF) vulnerability in Nextchat NextChat, also known as ChatGPT-Next-Web, is a cross-platform chat user interface for use with ChatGPT. | 9.8 |
| 2024-03-05 | CVE-2024-27561 | Server-Side Request Forgery (SSRF) vulnerability in Wondercms 3.1.3 A Server-Side Request Forgery (SSRF) in the installUpdateThemePluginAction function of WonderCMS v3.1.3 allows attackers to force the application to make arbitrary requests via injection of crafted URLs into the installThemePlugin parameter. | 8.1 |
| 2024-03-05 | CVE-2024-27563 | Server-Side Request Forgery (SSRF) vulnerability in Wondercms 3.1.3 A Server-Side Request Forgery (SSRF) in the getFileFromRepo function of WonderCMS v3.1.3 allows attackers to force the application to make arbitrary requests via injection of crafted URLs into the pluginThemeUrl parameter. | 5.3 |
| 2024-03-05 | CVE-2024-27564 | Server-Side Request Forgery (SSRF) vulnerability in Dirk1983 Chatgpt 20230523 pictureproxy.php in the dirk1983 mm1.ltd source code f9f4bbc allows SSRF via the url parameter. | 6.5 |
| 2024-03-05 | CVE-2024-27565 | Server-Side Request Forgery (SSRF) vulnerability in Dirk1983 Chatgpt-Wechat-Personal 20230329 A Server-Side Request Forgery (SSRF) in weixin.php of ChatGPT-wechat-personal commit a0857f6 allows attackers to force the application to make arbitrary requests. | 9.8 |
| 2024-02-28 | CVE-2024-1965 | Server-Side Request Forgery (SSRF) vulnerability in Haivision Maanager and Streamhub Server-Side Request Forgery vulnerability in Haivision's Aviwest Manager and Aviwest Steamhub. | 5.3 |
| 2024-02-28 | CVE-2024-1568 | Server-Side Request Forgery (SSRF) vulnerability in S-Sols Seraphinite Accelerator The Seraphinite Accelerator plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.20.52 via the OnAdminApi_HtmlCheck function. | 6.4 |
| 2024-02-21 | CVE-2024-23654 | Server-Side Request Forgery (SSRF) vulnerability in Discourse AI discourse-ai is the AI plugin for the open-source discussion platform Discourse. | 7.2 |
| 2024-02-14 | CVE-2023-5122 | Server-Side Request Forgery (SSRF) vulnerability in Grafana Grafana is an open-source platform for monitoring and observability. | 5.3 |