Vulnerabilities > Server-Side Request Forgery (SSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-11-02 | CVE-2021-29738 | Server-Side Request Forgery (SSRF) vulnerability in IBM Infosphere Information Server 11.7 IBM InfoSphere Data Flow Designer (IBM InfoSphere Information Server 11.7 ) is vulnerable to server-side request forgery (SSRF). | 5.5 |
| 2021-10-27 | CVE-2021-29844 | Server-Side Request Forgery (SSRF) vulnerability in IBM products IBM Jazz Team Server products is vulnerable to server-side request forgery (SSRF). | 6.5 |
| 2021-10-21 | CVE-2021-35512 | Server-Side Request Forgery (SSRF) vulnerability in Zohocorp Manageengine Applications Manager 15.2 An SSRF issue was discovered in Zoho ManageEngine Applications Manager build 15200. | 6.4 |
| 2021-10-21 | CVE-2021-41792 | Server-Side Request Forgery (SSRF) vulnerability in Alfresco products An issue was discovered in Hyland org.alfresco:alfresco-content-services through 6.2.2.18 and org.alfresco:alfresco-transform-services through 1.3. | 5.0 |
| 2021-10-20 | CVE-2021-25972 | Server-Side Request Forgery (SSRF) vulnerability in Tuzitio Camaleon CMS In Camaleon CMS, versions 2.1.2.0 to 2.6.0, are vulnerable to Server-Side Request Forgery (SSRF) in the media upload feature, which allows admin users to fetch media files from external URLs but fails to validate URLs referencing to localhost or other internal servers. | 4.0 |
| 2021-10-19 | CVE-2021-32663 | Server-Side Request Forgery (SSRF) vulnerability in Combodo Itop 2.7.0 iTop is an open source web based IT Service Management tool. | 5.0 |
| 2021-10-13 | CVE-2021-22033 | Server-Side Request Forgery (SSRF) vulnerability in VMWare products Releases prior to VMware vRealize Operations 8.6 contain a Server Side Request Forgery (SSRF) vulnerability. | 4.0 |
| 2021-10-07 | CVE-2021-42091 | Server-Side Request Forgery (SSRF) vulnerability in Zammad An issue was discovered in Zammad before 4.1.1. | 6.4 |
| 2021-10-07 | CVE-2021-22958 | Server-Side Request Forgery (SSRF) vulnerability in Concretecms Concrete CMS A Server-Side Request Forgery vulnerability was found in concrete5 < 8.5.5 that allowed a decimal notation encoded IP address to bypass the limitations in place for localhost allowing interaction with local services. | 7.5 |
| 2021-10-06 | CVE-2020-21649 | Server-Side Request Forgery (SSRF) vulnerability in Myucms Project Myucms 2.2 Myucms v2.2.1 contains a server-side request forgery (SSRF) in the component \controller\index.php, which can be exploited via the sql() method. | 5.5 |