Vulnerabilities > Server-Side Request Forgery (SSRF)
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-12-19 | CVE-2022-38708 | Server-Side Request Forgery (SSRF) vulnerability in IBM Cognos Analytics IBM Cognos Analytics 11.1.7 11.2.0, and 11.2.1 could be vulnerable to a Server-Side Request Forgery Attack (SSRF) attack by constructing URLs from user-controlled data. | 9.1 |
2022-12-16 | CVE-2022-42343 | Adobe Campaign version 7.3.1 (and earlier) and 8.3.9 (and earlier) are affected by a Server-Side Request Forgery (SSRF) vulnerability that could lead to arbitrary file system read. | 6.5 |
2022-12-13 | CVE-2022-46364 | Server-Side Request Forgery (SSRF) vulnerability in Apache CXF A SSRF vulnerability in parsing the href attribute of XOP:Include in MTOM requests in versions of Apache CXF before 3.5.5 and 3.4.10 allows an attacker to perform SSRF style attacks on webservices that take at least one parameter of any type. | 9.8 |
2022-12-08 | CVE-2022-41949 | Server-Side Request Forgery (SSRF) vulnerability in Dhis2 Dhis 2 DHIS 2 is an open source information system for data capture, management, validation, analytics and visualization. | 4.3 |
2022-12-08 | CVE-2022-46830 | Server-Side Request Forgery (SSRF) vulnerability in Jetbrains Teamcity 2022.10 In JetBrains TeamCity between 2022.10 and 2022.10.1 a custom STS endpoint allowed internal port scanning. | 5.3 |
2022-12-04 | CVE-2022-35508 | Server-Side Request Forgery (SSRF) vulnerability in Proxmox products Proxmox Virtual Environment (PVE) and Proxmox Mail Gateway (PMG) are vulnerable to SSRF when proxying HTTP requests between pve(pmg)proxy and pve(pmg)daemon. | 9.8 |
2022-11-30 | CVE-2022-41412 | Server-Side Request Forgery (SSRF) vulnerability in Perfsonar An issue in the graphData.cgi component of perfSONAR v4.4.5 and prior allows attackers to access sensitive data and execute Server-Side Request Forgery (SSRF) attacks. | 8.6 |
2022-11-25 | CVE-2022-45152 | Server-Side Request Forgery (SSRF) vulnerability in multiple products A blind Server-Side Request Forgery (SSRF) vulnerability was found in Moodle. | 9.1 |
2022-11-22 | CVE-2022-40842 | Server-Side Request Forgery (SSRF) vulnerability in Ndk-Design Ndkadvancedcustomizationfields 3.5.0 ndk design NdkAdvancedCustomizationFields 3.5.0 is vulnerable to Server-side request forgery (SSRF) via rotateimg.php. | 9.1 |
2022-11-21 | CVE-2022-4096 | Server-Side Request Forgery (SSRF) vulnerability in Appsmith Server-Side Request Forgery (SSRF) in GitHub repository appsmithorg/appsmith prior to 1.8.2. | 6.5 |