Vulnerabilities > Server-Side Request Forgery (SSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-20 | CVE-2023-27586 | Server-Side Request Forgery (SSRF) vulnerability in Courtbouillon Cairosvg CairoSVG is an SVG converter based on Cairo, a 2D graphics library. | 7.1 |
| 2023-03-16 | CVE-2023-28155 | Server-Side Request Forgery (SSRF) vulnerability in Request Project Request The Request package through 2.88.1 for Node.js allows a bypass of SSRF mitigations via an attacker-controller server that does a cross-protocol redirect (HTTP to HTTPS, or HTTPS to HTTP). | 6.1 |
| 2023-03-10 | CVE-2023-27161 | Server-Side Request Forgery (SSRF) vulnerability in Jellyfin Jellyfin up to v10.7.7 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /Repositories. | 7.5 |
| 2023-03-07 | CVE-2023-25230 | Server-Side Request Forgery (SSRF) vulnerability in Loonflow Project Loonflow R2.0.14 A Server-Side Request Forgery (SSRF) in loonflow r2.0.14 allows attackers to force the application to make arbitrary requests via manipulation of the hook_url parameter. | 4.9 |
| 2023-03-06 | CVE-2021-36396 | Server-Side Request Forgery (SSRF) vulnerability in Moodle In Moodle, insufficient redirect handling made it possible to blindly bypass cURL blocked hosts/allowed ports restrictions, resulting in a blind SSRF risk. | 7.5 |
| 2023-03-03 | CVE-2022-46973 | Server-Side Request Forgery (SSRF) vulnerability in Anji-Plus Aj-Report 0.9.8.6 Report v0.9.8.6 was discovered to contain a Server-Side Request Forgery (SSRF) vulnerability. | 9.8 |
| 2023-03-03 | CVE-2023-20062 | Server-Side Request Forgery (SSRF) vulnerability in Cisco products Multiple vulnerabilities in Cisco Unified Intelligence Center could allow an authenticated, remote attacker to collect sensitive information or perform a server-side request forgery (SSRF) attack on an affected system. | 4.3 |
| 2023-03-01 | CVE-2022-37938 | Server-Side Request Forgery (SSRF) vulnerability in HPE Serviceguard for Linux Unauthenticated server side request forgery in HPE Serviceguard Manager | 9.8 |
| 2023-02-20 | CVE-2022-48321 | Server-Side Request Forgery (SSRF) vulnerability in Checkmk 2.1.0 Limited Server-Side Request Forgery (SSRF) in agent-receiver in Tribe29's Checkmk <= 2.1.0p11 allows an attacker to communicate with local network restricted endpoints by use of the host registration API. | 3.3 |
| 2023-02-17 | CVE-2021-33926 | Server-Side Request Forgery (SSRF) vulnerability in Plone An issue in Plone CMS v. | 8.8 |