Vulnerabilities > Server-Side Request Forgery (SSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-07 | CVE-2022-0766 | Server-Side Request Forgery (SSRF) vulnerability in Janeczku Calibre-Web Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web prior to 0.6.17. | 9.8 |
| 2022-03-07 | CVE-2022-0767 | Server-Side Request Forgery (SSRF) vulnerability in Janeczku Calibre-Web Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web prior to 0.6.17. | 9.9 |
| 2022-02-28 | CVE-2022-0768 | Server-Side Request Forgery (SSRF) vulnerability in Alltubedownload Alltube Server-Side Request Forgery (SSRF) in GitHub repository rudloff/alltube prior to 3.0.2. | 9.1 |
| 2022-02-25 | CVE-2022-25260 | Server-Side Request Forgery (SSRF) vulnerability in Jetbrains HUB JetBrains Hub before 2021.1.14276 was vulnerable to blind Server-Side Request Forgery (SSRF). | 9.1 |
| 2022-02-25 | CVE-2022-24333 | Server-Side Request Forgery (SSRF) vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.2, blind SSRF via an XML-RPC call was possible. | 6.5 |
| 2022-02-19 | CVE-2022-24980 | Server-Side Request Forgery (SSRF) vulnerability in Kitodo Kitodo.Presentation 3.1.2 An issue was discovered in the Kitodo.Presentation (aka dif) extension before 2.3.2, 3.x before 3.2.3, and 3.3.x before 3.3.4 for TYPO3. | 7.5 |
| 2022-02-18 | CVE-2021-20325 | Server-Side Request Forgery (SSRF) vulnerability in Redhat Enterprise Linux 8.5.0 Missing fixes for CVE-2021-40438 and CVE-2021-26691 in the versions of httpd, as shipped in Red Hat Enterprise Linux 8.5.0, causes a security regression compared to the versions shipped in Red Hat Enterprise Linux 8.4. | 9.8 |
| 2022-02-18 | CVE-2022-0671 | Server-Side Request Forgery (SSRF) vulnerability in Redhat Vscode-Xml A flaw was found in vscode-xml in versions prior to 0.19.0. | 9.1 |
| 2022-02-18 | CVE-2022-21215 | Server-Side Request Forgery (SSRF) vulnerability in Airspan products This vulnerability could allow an attacker to force the server to create and execute a web request granting access to backend APIs that are only accessible to the Mimosa MMP server, or request pages that could perform some actions themselves. | 9.8 |
| 2022-02-10 | CVE-2022-24568 | Server-Side Request Forgery (SSRF) vulnerability in Xxyopen Novel-Plus 3.6.0 Novel-plus v3.6.0 was discovered to be vulnerable to Server-Side Request Forgery (SSRF) via user-supplied crafted input. | 9.8 |