Vulnerabilities > Server-Side Request Forgery (SSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-19 | CVE-2023-41899 | Server-Side Request Forgery (SSRF) vulnerability in Home-Assistant Home assistant is an open source home automation. | 7.2 |
| 2023-10-19 | CVE-2023-45822 | Server-Side Request Forgery (SSRF) vulnerability in Artifacthub HUB Artifact Hub is a web-based application that enables finding, installing, and publishing packages and configurations for CNCF projects. | 5.3 |
| 2023-10-19 | CVE-2023-25753 | Server-Side Request Forgery (SSRF) vulnerability in Apache Shenyu 2.5.1 There exists an SSRF (Server-Side Request Forgery) vulnerability located at the /sandbox/proxyGateway endpoint. | 6.5 |
| 2023-10-19 | CVE-2023-46229 | Server-Side Request Forgery (SSRF) vulnerability in Langchain LangChain before 0.0.317 allows SSRF via document_loaders/recursive_url_loader.py because crawling can proceed from an external server to an internal server. | 8.8 |
| 2023-10-17 | CVE-2023-45152 | Server-Side Request Forgery (SSRF) vulnerability in Engelsystem Engelsystem is a shift planning system for chaos events. | 2.3 |
| 2023-10-09 | CVE-2023-39854 | Server-Side Request Forgery (SSRF) vulnerability in ATX Ucrypt 3.5 The web interface of ATX Ucrypt through 3.5 allows authenticated users (or attackers using default credentials for the admin, master, or user account) to include files via a URL in the /hydra/view/get_cc_url url parameter. | 6.5 |
| 2023-10-06 | CVE-2023-44384 | Server-Side Request Forgery (SSRF) vulnerability in Discourse Jira 20231001 Discourse-jira is a Discourse plugin allows Jira projects, issue types, fields and field options will be synced automatically. | 4.1 |
| 2023-10-02 | CVE-2023-3744 | Server-Side Request Forgery (SSRF) vulnerability in Slims Senayan Library Management System 9.6.0 Server-Side Request Forgery vulnerability in SLims version 9.6.0. | 8.8 |
| 2023-09-29 | CVE-2023-44469 | Server-Side Request Forgery (SSRF) vulnerability in Lemonldap-Ng Lemonldap::Ng A Server-Side Request Forgery issue in the OpenID Connect Issuer in LemonLDAP::NG before 2.17.1 allows authenticated remote attackers to send GET requests to arbitrary URLs through the request_uri authorization parameter. | 4.3 |
| 2023-09-27 | CVE-2023-41449 | Server-Side Request Forgery (SSRF) vulnerability in PHPkobo Ajaxnewsticker 1.0.5 An issue in phpkobo AjaxNewsTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the reque parameter. | 9.8 |