Vulnerabilities > Server-Side Request Forgery (SSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-01 | CVE-2023-28824 | Server-Side Request Forgery (SSRF) vulnerability in Contec Conprosys HMI System Server-side request forgery vulnerability exists in CONPROSYS HMI System (CHS) versions prior to 3.5.3. | 4.9 |
| 2023-06-01 | CVE-2023-23955 | Server-Side Request Forgery (SSRF) vulnerability in Broadcom Advanced Secure Gateway and Content Analysis Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to a Server-Side Request Forgery vulnerability. | 8.1 |
| 2023-05-27 | CVE-2023-33184 | Server-Side Request Forgery (SSRF) vulnerability in Nextcloud Mail Nextcloud Mail is a mail app in Nextcloud. | 5.3 |
| 2023-05-17 | CVE-2023-31848 | Server-Side Request Forgery (SSRF) vulnerability in Davinci Project Davinci 0.3.0 davinci 0.3.0-rc is vulnerable to Server-side request forgery (SSRF). | 8.8 |
| 2023-05-12 | CVE-2023-23169 | Server-Side Request Forgery (SSRF) vulnerability in Synapsoft Pdfocus 1.17 Synapsoft pdfocus 1.17 is vulnerable to local file inclusion and server-side request forgery Directory Traversal. | 6.5 |
| 2023-05-10 | CVE-2022-29840 | Server-Side Request Forgery (SSRF) vulnerability in Westerndigital MY Cloud OS Server-Side Request Forgery (SSRF) vulnerability that could allow a rogue server on the local network to modify its URL to point back to the loopback adapter was addressed in Western Digital My Cloud OS 5 devices. | 5.5 |
| 2023-05-08 | CVE-2023-30019 | Server-Side Request Forgery (SSRF) vulnerability in Evilmartians Imgproxy imgproxy <=3.14.0 is vulnerable to Server-Side Request Forgery (SSRF) due to a lack of sanitization of the imageURL parameter. | 5.3 |
| 2023-04-26 | CVE-2023-26735 | Server-Side Request Forgery (SSRF) vulnerability in Prometheus Blackbox Exporter 0.23.0 blackbox_exporter v0.23.0 was discovered to contain an access control issue in its probe interface. | 7.5 |
| 2023-04-21 | CVE-2023-2140 | Server-Side Request Forgery (SSRF) vulnerability in 3DS Delmia Apriso 2017/2019/2022 A Server-Side Request Forgery vulnerability in DELMIA Apriso Release 2017 through Release 2022 could allow an unauthenticated attacker to issue requests to arbitrary hosts on behalf of the server running the DELMIA Apriso application. | 7.5 |
| 2023-04-17 | CVE-2023-25504 | Server-Side Request Forgery (SSRF) vulnerability in Apache Superset A malicious actor who has been authenticated and granted specific permissions in Apache Superset may use the import dataset feature in order to conduct Server-Side Request Forgery attacks and query internal resources on behalf of the server where Superset is deployed. | 6.5 |