Vulnerabilities > Server-Side Request Forgery (SSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-09 | CVE-2022-31827 | Server-Side Request Forgery (SSRF) vulnerability in Monstaftp 2.10.3 MonstaFTP v2.10.3 was discovered to contain a Server-Side Request Forgery (SSRF) via the function performFetchRequest at HTTPFetcher.php. | 9.1 |
| 2022-06-09 | CVE-2022-31830 | Server-Side Request Forgery (SSRF) vulnerability in Baidu Kity Minder 1.3.5 Kity Minder v1.3.5 was discovered to contain a Server-Side Request Forgery (SSRF) via the init function at ImageCapture.class.php. | 9.1 |
| 2022-06-02 | CVE-2021-40186 | Server-Side Request Forgery (SSRF) vulnerability in Dnnsoftware Dotnetnuke The AppCheck research team identified a Server-Side Request Forgery (SSRF) vulnerability within the DNN CMS platform, formerly known as DotNetNuke. | 7.5 |
| 2022-06-02 | CVE-2022-27780 | Server-Side Request Forgery (SSRF) vulnerability in multiple products The curl URL parser wrongly accepts percent-encoded URL separators like '/'when decoding the host name part of a URL, making it a *different* URL usingthe wrong host name when it is later retrieved.For example, a URL like `http://example.com%2F127.0.0.1/`, would be allowed bythe parser and get transposed into `http://example.com/127.0.0.1/`. | 7.5 |
| 2022-06-01 | CVE-2022-1285 | Server-Side Request Forgery (SSRF) vulnerability in Gogs Server-Side Request Forgery (SSRF) in GitHub repository gogs/gogs prior to 0.12.8. | 6.5 |
| 2022-05-25 | CVE-2022-1815 | Server-Side Request Forgery (SSRF) vulnerability in Diagrams Drawio Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository jgraph/drawio prior to 18.1.2. | 7.5 |
| 2022-05-24 | CVE-2022-29309 | Server-Side Request Forgery (SSRF) vulnerability in Mysiteforme Project Mysiteforme 2.2.1 mysiteforme v2.2.1 was discovered to contain a Server-Side Request Forgery. | 7.5 |
| 2022-05-23 | CVE-2022-28997 | Server-Side Request Forgery (SSRF) vulnerability in Cszcms 1.3.0 CSZCMS v1.3.0 allows attackers to execute a Server-Side Request Forgery (SSRF) which can be leveraged to leak sensitive data via a local file inclusion at /admin/filemanager/connector/. | 7.5 |
| 2022-05-20 | CVE-2022-1784 | Server-Side Request Forgery (SSRF) vulnerability in Diagrams Drawio Server-Side Request Forgery (SSRF) in GitHub repository jgraph/drawio prior to 18.0.8. | 7.5 |
| 2022-05-18 | CVE-2022-1767 | Server-Side Request Forgery (SSRF) vulnerability in Diagrams Drawio Server-Side Request Forgery (SSRF) in GitHub repository jgraph/drawio prior to 18.0.7. | 7.5 |