Vulnerabilities > Server-Side Request Forgery (SSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-19 | CVE-2017-17674 | Server-Side Request Forgery (SSRF) vulnerability in BMC Remedy Mid-Tier 9.1 BMC Remedy Mid Tier 9.1SP3 is affected by remote and local file inclusion. | 9.8 |
| 2021-05-13 | CVE-2021-20535 | Server-Side Request Forgery (SSRF) vulnerability in IBM Jazz Reporting Service IBM Jazz Reporting Service 6.0.6.1, 7.0, 7.0.1, and 7.0.2 is vulnerable to server-side request forgery (SSRF). | 5.4 |
| 2021-05-11 | CVE-2021-31910 | Server-Side Request Forgery (SSRF) vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2020.2.3, information disclosure via SSRF was possible. | 7.5 |
| 2021-05-07 | CVE-2020-29445 | Server-Side Request Forgery (SSRF) vulnerability in Atlassian Confluence Server Affected versions of Confluence Server before 7.4.8, and versions from 7.5.0 before 7.11.0 allow attackers to identify internal hosts and ports via a blind server-side request forgery vulnerability in Team Calendars parameters. | 4.3 |
| 2021-05-06 | CVE-2021-31828 | Server-Side Request Forgery (SSRF) vulnerability in Amazon Open Distro An SSRF issue in Open Distro for Elasticsearch (ODFE) before 1.13.1.0 allows an existing privileged user to enumerate listening services or interact with configured resources via HTTP requests exceeding the Alerting plugin's intended scope. | 7.1 |
| 2021-04-30 | CVE-2020-28943 | Server-Side Request Forgery (SSRF) vulnerability in Open-Xchange Appsuite OX App Suite 7.10.4 and earlier allows SSRF via a snippet. | 6.5 |
| 2021-04-29 | CVE-2020-22002 | Server-Side Request Forgery (SSRF) vulnerability in Inim products An Unauthenticated Server-Side Request Forgery (SSRF) vulnerability exists in Inim Electronics Smartliving SmartLAN/G/SI <=6.x within the GetImage functionality. | 7.5 |
| 2021-04-29 | CVE-2021-29145 | Server-Side Request Forgery (SSRF) vulnerability in Arubanetworks Clearpass A remote server side request forgery (SSRF) remote code execution vulnerability was discovered in Aruba ClearPass Policy Manager version(s) prior to 6.9.5, 6.8.9, 6.7.14-HF1. | 9.8 |
| 2021-04-28 | CVE-2021-31779 | Server-Side Request Forgery (SSRF) vulnerability in Yoast SEO 7.2.0 The yoast_seo (aka Yoast SEO) extension before 7.2.1 for TYPO3 allows SSRF via a backend user account. | 6.4 |
| 2021-04-26 | CVE-2021-29475 | Server-Side Request Forgery (SSRF) vulnerability in Hedgedoc HedgeDoc (formerly known as CodiMD) is an open-source collaborative markdown editor. | 10.0 |