Vulnerabilities > Server-Side Request Forgery (SSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-02 | CVE-2022-2416 | Server-Side Request Forgery (SSRF) vulnerability in Octopus Server In affected versions of Octopus Deploy it is possible for a low privileged guest user to craft a request that allows enumeration/recon of an environment. | 4.3 |
| 2023-08-01 | CVE-2023-39108 | Server-Side Request Forgery (SSRF) vulnerability in Rconfig 3.9.4 rconfig v3.9.4 was discovered to contain a Server-Side Request Forgery (SSRF) via the path_b parameter in the doDiff Function of /classes/compareClass.php. | 8.8 |
| 2023-08-01 | CVE-2023-39109 | Server-Side Request Forgery (SSRF) vulnerability in Rconfig 3.9.4 rconfig v3.9.4 was discovered to contain a Server-Side Request Forgery (SSRF) via the path_a parameter in the doDiff Function of /classes/compareClass.php. | 8.8 |
| 2023-08-01 | CVE-2023-39110 | Server-Side Request Forgery (SSRF) vulnerability in Rconfig 3.9.4 rconfig v3.9.4 was discovered to contain a Server-Side Request Forgery (SSRF) via the path parameter at /ajaxGetFileByPath.php. | 8.8 |
| 2023-07-31 | CVE-2022-42183 | Server-Side Request Forgery (SSRF) vulnerability in Precisely Spectrum Spatial Analyst 20.01 Precisely Spectrum Spatial Analyst 20.01 is vulnerable to Server-Side Request Forgery (SSRF). | 9.1 |
| 2023-07-27 | CVE-2023-3981 | Server-Side Request Forgery (SSRF) vulnerability in Omeka Server-Side Request Forgery (SSRF) in GitHub repository omeka/omeka-s prior to 4.0.2. | 4.9 |
| 2023-07-21 | CVE-2021-35391 | Server-Side Request Forgery (SSRF) vulnerability in Deskpro 2021.21.6 Server Side Request Forgery vulnerability found in Deskpro Support Desk v2021.21.6 allows attackers to execute arbitrary code via a crafted URL. | 7.2 |
| 2023-07-19 | CVE-2023-29260 | Server-Side Request Forgery (SSRF) vulnerability in IBM Sterling Connect:Express for Unix 1.5.0 IBM Sterling Connect:Express for UNIX 1.5 is vulnerable to server-side request forgery (SSRF). | 5.4 |
| 2023-07-17 | CVE-2023-3577 | Server-Side Request Forgery (SSRF) vulnerability in Mattermost Server Mattermost fails to properly restrict requests to localhost/intranet during the interactive dialog, which could allow an attacker to perform a limited blind SSRF. | 4.3 |
| 2023-07-10 | CVE-2021-42079 | Server-Side Request Forgery (SSRF) vulnerability in Osnexus Quantastor 4.3.0 An authenticated administrator is able to prepare an alert that is able to execute an SSRF attack. | 4.9 |