Vulnerabilities > Server-Side Request Forgery (SSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-19 | CVE-2022-41609 | Server-Side Request Forgery (SSRF) vulnerability in Wordplus Better Messages Auth. | 8.8 |
| 2022-11-17 | CVE-2022-43183 | Server-Side Request Forgery (SSRF) vulnerability in Xuxueli Xxl-Job XXL-Job before v2.3.1 contains a Server-Side Request Forgery (SSRF) via the component /admin/controller/JobLogController.java. | 8.8 |
| 2022-11-17 | CVE-2022-42894 | Server-Side Request Forgery (SSRF) vulnerability in Siemens Syngo Dynamics Cardiovascular Imaging and Information System A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). | 7.5 |
| 2022-11-17 | CVE-2022-43140 | Server-Side Request Forgery (SSRF) vulnerability in Keking Kkfileview 4.1.0 kkFileView v4.1.0 was discovered to contain a Server-Side Request Forgery (SSRF) via the component cn.keking.web.controller.OnlinePreviewController#getCorsFile. | 7.5 |
| 2022-11-16 | CVE-2022-39383 | Server-Side Request Forgery (SSRF) vulnerability in Linuxfoundation Kubevela KubeVela is an open source application delivery platform. | 6.5 |
| 2022-11-11 | CVE-2022-41906 | Server-Side Request Forgery (SSRF) vulnerability in Amazon Opensearch Notifications OpenSearch Notifications is a notifications plugin for OpenSearch that enables other plugins to send notifications via Email, Slack, Amazon Chime, Custom web-hook etc channels. | 8.7 |
| 2022-11-08 | CVE-2022-42494 | Server-Side Request Forgery (SSRF) vulnerability in Aioseo ALL in ONE SEO Server Side Request Forgery (SSRF) vulnerability in All in One SEO Pro plugin <= 4.2.5.1 on WordPress. | 6.5 |
| 2022-11-04 | CVE-2022-20951 | Server-Side Request Forgery (SSRF) vulnerability in Cisco Broadworks Messaging Server 22.0 A vulnerability in the web-based management interface of Cisco BroadWorks CommPilot application could allow an authenticated, remote attacker to perform a server-side request forgery (SSRF) attack on an affected device. This vulnerability is due to insufficient validation of user-supplied input. | 6.5 |
| 2022-11-04 | CVE-2022-20958 | Server-Side Request Forgery (SSRF) vulnerability in Cisco Broadworks Commpilot Application A vulnerability in the web-based management interface of Cisco BroadWorks CommPilot application could allow an unauthenticated, remote attacker to perform a server-side request forgery (SSRF) attack on an affected device. This vulnerability is due to insufficient validation of user-supplied input. | 8.8 |
| 2022-11-03 | CVE-2022-39276 | Server-Side Request Forgery (SSRF) vulnerability in Glpi-Project Glpi GLPI stands for Gestionnaire Libre de Parc Informatique. | 5.3 |