VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
> Server-Side Request Forgery (SSRF)
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2025-04-28
CVE-2025-4012
Server-Side Request Forgery (SSRF) vulnerability in Playeduos Playedu
A vulnerability was found in playeduxyz PlayEdu ?????? up to 1.8 and classified as problematic.
network
low complexity
playeduos
CWE-918
7.5
7.5
2025-04-25
CVE-2025-3775
The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +20 Modules – All in One Solution (formerly WooLentor) plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 3.1.2 via the woolentor_template_proxy function.
network
low complexity
CWE-918
6.5
6.5
2025-04-22
CVE-2025-27907
IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to server-side request forgery (SSRF).
network
low complexity
CWE-918
4.1
4.1
2025-04-22
CVE-2025-2987
IBM Maximo Asset Management 7.6.1.3 is vulnerable to server-side request forgery (SSRF).
network
low complexity
CWE-918
3.8
3.8
2025-04-14
CVE-2025-3572
SmartRobot from INTUMIT has a Server-Side Request Forgery vulnerability, allowing unauthenticated remote attackers to probe internal network and even access arbitrary local files on the server.
network
low complexity
CWE-918
7.5
7.5
2025-04-05
CVE-2025-32358
Server-Side Request Forgery (SSRF) vulnerability in Zammad 6.4.0/6.4.1
In Zammad 6.4.x before 6.4.2, SSRF can occur.
network
low complexity
zammad
CWE-918
4.1
4.1
2025-04-04
CVE-2025-3254
A vulnerability was found in xujiangfei admintwo 1.0.
network
low complexity
CWE-918
6.3
6.3
2025-03-31
CVE-2025-2997
A vulnerability was found in zhangyanbo2007 youkefu 4.2.0.
network
low complexity
CWE-918
6.3
6.3
2025-03-26
CVE-2024-13411
The Zapier for WordPress plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.5.1 via the updated_user() function.
network
low complexity
CWE-918
6.4
6.4
2025-03-26
CVE-2025-1912
The Product Import Export for WooCommerce – Import Export Product CSV Suite plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.5.0 via the validate_file() Function.
network
low complexity
CWE-918
7.6
7.6
«
Previous
1
2
(current)
3
4
5
...
95
96
»
Next