Vulnerabilities > Server-Side Request Forgery (SSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-26 | CVE-2024-0946 | Server-Side Request Forgery (SSRF) vulnerability in 60Indexpage Project 60Indexpage A vulnerability classified as critical was found in 60IndexPage up to 1.8.5. | 9.8 |
| 2024-01-24 | CVE-2024-22134 | Server-Side Request Forgery (SSRF) vulnerability in Renzojohnson Contact Form 7 Extension for Mailchimp 0.5.70 Server-Side Request Forgery (SSRF) vulnerability in Renzo Johnson Contact Form 7 Extension For Mailchimp.This issue affects Contact Form 7 Extension For Mailchimp: from n/a through 0.5.70. | 6.5 |
| 2024-01-23 | CVE-2023-38624 | Server-Side Request Forgery (SSRF) vulnerability in Trendmicro Apex Central 2019 A post-authenticated server-side request forgery (SSRF) vulnerability in Trend Micro Apex Central 2019 (lower than build 6481) could allow an attacker to interact with internal or local services directly. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. This is a similar, but not identical vulnerability as CVE-2023-38625 through CVE-2023-38627. | 5.4 |
| 2024-01-23 | CVE-2023-38625 | Server-Side Request Forgery (SSRF) vulnerability in Trendmicro Apex Central 2019 A post-authenticated server-side request forgery (SSRF) vulnerability in Trend Micro Apex Central 2019 (lower than build 6481) could allow an attacker to interact with internal or local services directly. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. This is a similar, but not identical vulnerability as CVE-2023-38624. | 5.4 |
| 2024-01-23 | CVE-2023-38626 | Server-Side Request Forgery (SSRF) vulnerability in Trendmicro Apex Central 2019 A post-authenticated server-side request forgery (SSRF) vulnerability in Trend Micro Apex Central 2019 (lower than build 6481) could allow an attacker to interact with internal or local services directly. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. This is a similar, but not identical vulnerability as CVE-2023-38625. | 5.4 |
| 2024-01-23 | CVE-2023-38627 | Server-Side Request Forgery (SSRF) vulnerability in Trendmicro Apex Central 2019 A post-authenticated server-side request forgery (SSRF) vulnerability in Trend Micro Apex Central 2019 (lower than build 6481) could allow an attacker to interact with internal or local services directly. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. This is a similar, but not identical vulnerability as CVE-2023-38626. | 5.4 |
| 2024-01-23 | CVE-2023-52331 | Server-Side Request Forgery (SSRF) vulnerability in Trendmicro Apex Central 2019 A post-authenticated server-side request forgery (SSRF) vulnerability in Trend Micro Apex Central could allow an attacker to interact with internal or local services directly. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. | 7.1 |
| 2024-01-23 | CVE-2024-22203 | Server-Side Request Forgery (SSRF) vulnerability in Benbusby Whoogle Search Whoogle Search is a self-hosted metasearch engine. | 9.8 |
| 2024-01-23 | CVE-2024-22205 | Server-Side Request Forgery (SSRF) vulnerability in Benbusby Whoogle Search Whoogle Search is a self-hosted metasearch engine. | 9.8 |
| 2024-01-23 | CVE-2024-23330 | Server-Side Request Forgery (SSRF) vulnerability in Tuta Tutanota Tuta is an encrypted email service. | 5.3 |