Vulnerabilities > Server-Side Request Forgery (SSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-15 | CVE-2021-33690 | Server-Side Request Forgery (SSRF) vulnerability in SAP Netweaver Development Infrastructure Server-Side Request Forgery (SSRF) vulnerability has been detected in the SAP NetWeaver Development Infrastructure Component Build Service versions - 7.11, 7.20, 7.30, 7.31, 7.40, 7.50The SAP NetWeaver Development Infrastructure Component Build Service allows a threat actor who has access to the server to perform proxy attacks on server by sending crafted queries. | 9.9 |
| 2021-09-15 | CVE-2020-21122 | Server-Side Request Forgery (SSRF) vulnerability in Ureport Project Ureport 2.2.9 UReport v2.2.9 contains a Server-Side Request Forgery (SSRF) in the designer page which allows attackers to detect intranet device ports. | 5.3 |
| 2021-09-14 | CVE-2021-23029 | Server-Side Request Forgery (SSRF) vulnerability in F5 products On version 16.0.x before 16.0.1.2, insufficient permission checks may allow authenticated users with guest privileges to perform Server-Side Request Forgery (SSRF) attacks through F5 Advanced Web Application Firewall (WAF) and the BIG-IP ASM Configuration utility. | 8.8 |
| 2021-09-09 | CVE-2021-28910 | Server-Side Request Forgery (SSRF) vulnerability in Bab-Technologie Eibport Firmware 3.8.2/3.8.3 BAB TECHNOLOGIE GmbH eibPort V3 prior version 3.9.1 contains basic SSRF vulnerability. | 7.5 |
| 2021-09-08 | CVE-2021-40537 | Server-Side Request Forgery (SSRF) vulnerability in Owncloud User Ldap Server Side Request Forgery (SSRF) vulnerability exists in owncloud/user_ldap < 0.15.4 in the settings of the user_ldap app. | 2.7 |
| 2021-09-07 | CVE-2021-39497 | Server-Side Request Forgery (SSRF) vulnerability in Eyoucms 1.5.4 eyoucms 1.5.4 lacks sanitization of input data, allowing an attacker to inject a url to trigger blind SSRF via the saveRemote() function. | 9.8 |
| 2021-09-02 | CVE-2021-3758 | Server-Side Request Forgery (SSRF) vulnerability in Bookstackapp Bookstack bookstack is vulnerable to Server-Side Request Forgery (SSRF) | 6.5 |
| 2021-09-01 | CVE-2020-20341 | Server-Side Request Forgery (SSRF) vulnerability in Yzmcms 5.5 YzmCMS v5.5 contains a server-side request forgery (SSRF) in the grab_image() function. | 7.5 |
| 2021-08-30 | CVE-2021-22026 | Server-Side Request Forgery (SSRF) vulnerability in VMWare products The vRealize Operations Manager API (8.x prior to 8.5) contains a Server Side Request Forgery in an end point. | 7.5 |
| 2021-08-30 | CVE-2021-22027 | Server-Side Request Forgery (SSRF) vulnerability in VMWare products The vRealize Operations Manager API (8.x prior to 8.5) contains a Server Side Request Forgery in an end point. | 7.5 |