Vulnerabilities > Server-Side Request Forgery (SSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-17 | CVE-2023-31848 | Server-Side Request Forgery (SSRF) vulnerability in Davinci Project Davinci 0.3.0 davinci 0.3.0-rc is vulnerable to Server-side request forgery (SSRF). | 8.8 |
| 2023-05-12 | CVE-2023-23169 | Server-Side Request Forgery (SSRF) vulnerability in Synapsoft Pdfocus 1.17 Synapsoft pdfocus 1.17 is vulnerable to local file inclusion and server-side request forgery Directory Traversal. | 6.5 |
| 2023-05-10 | CVE-2022-29840 | Server-Side Request Forgery (SSRF) vulnerability in Westerndigital MY Cloud OS Server-Side Request Forgery (SSRF) vulnerability that could allow a rogue server on the local network to modify its URL to point back to the loopback adapter was addressed in Western Digital My Cloud OS 5 devices. | 5.5 |
| 2023-05-08 | CVE-2023-30019 | Server-Side Request Forgery (SSRF) vulnerability in Evilmartians Imgproxy imgproxy <=3.14.0 is vulnerable to Server-Side Request Forgery (SSRF) due to a lack of sanitization of the imageURL parameter. | 5.3 |
| 2023-04-26 | CVE-2023-26735 | Server-Side Request Forgery (SSRF) vulnerability in Prometheus Blackbox Exporter 0.23.0 blackbox_exporter v0.23.0 was discovered to contain an access control issue in its probe interface. | 7.5 |
| 2023-04-21 | CVE-2023-2140 | Server-Side Request Forgery (SSRF) vulnerability in 3DS Delmia Apriso 2017/2019/2022 A Server-Side Request Forgery vulnerability in DELMIA Apriso Release 2017 through Release 2022 could allow an unauthenticated attacker to issue requests to arbitrary hosts on behalf of the server running the DELMIA Apriso application. | 7.5 |
| 2023-04-17 | CVE-2023-25504 | Server-Side Request Forgery (SSRF) vulnerability in Apache Superset A malicious actor who has been authenticated and granted specific permissions in Apache Superset may use the import dataset feature in order to conduct Server-Side Request Forgery attacks and query internal resources on behalf of the server where Superset is deployed. | 6.5 |
| 2023-04-15 | CVE-2018-17450 | Server-Side Request Forgery (SSRF) vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.1.7, 11.2.x before 11.2.4, and 11.3.x before 11.3.1. | 4.3 |
| 2023-04-15 | CVE-2018-17452 | Server-Side Request Forgery (SSRF) vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.1.7, 11.2.x before 11.2.4, and 11.3.x before 11.3.1. | 9.8 |
| 2023-04-15 | CVE-2022-43698 | Server-Side Request Forgery (SSRF) vulnerability in Open-Xchange OX APP Suite 7.10.5/7.10.6 OX App Suite before 7.10.6-rev30 allows SSRF because changing a POP3 account disregards the deny-list. | 4.3 |