Vulnerabilities > Server-Side Request Forgery (SSRF)
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-09-07 | CVE-2021-39497 | Server-Side Request Forgery (SSRF) vulnerability in Eyoucms 1.5.4 eyoucms 1.5.4 lacks sanitization of input data, allowing an attacker to inject a url to trigger blind SSRF via the saveRemote() function. | 7.5 |
2021-09-07 | CVE-2021-39195 | Server-Side Request Forgery (SSRF) vulnerability in Misskey Misskey is an open source, decentralized microblogging platform. | 4.0 |
2021-09-02 | CVE-2021-3758 | Server-Side Request Forgery (SSRF) vulnerability in Bookstackapp Bookstack bookstack is vulnerable to Server-Side Request Forgery (SSRF) | 4.0 |
2021-09-01 | CVE-2020-20341 | Server-Side Request Forgery (SSRF) vulnerability in Yzmcms 5.5 YzmCMS v5.5 contains a server-side request forgery (SSRF) in the grab_image() function. | 5.0 |
2021-09-01 | CVE-2021-36043 | Server-Side Request Forgery (SSRF) vulnerability in Adobe Commerce and Magento Open Source Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by a blind SSRF vulnerability in the bundled dotmailer extension. | 6.0 |
2021-08-30 | CVE-2021-22026 | Server-Side Request Forgery (SSRF) vulnerability in VMWare products The vRealize Operations Manager API (8.x prior to 8.5) contains a Server Side Request Forgery in an end point. | 5.0 |
2021-08-30 | CVE-2021-22027 | Server-Side Request Forgery (SSRF) vulnerability in VMWare products The vRealize Operations Manager API (8.x prior to 8.5) contains a Server Side Request Forgery in an end point. | 5.0 |
2021-08-26 | CVE-2020-14160 | Server-Side Request Forgery (SSRF) vulnerability in Thecodingmachine Gotenberg An SSRF vulnerability in Gotenberg through 6.2.1 exists in the remote URL to PDF conversion, which results in a remote attacker being able to read local files or fetch intranet resources. | 5.0 |
2021-08-24 | CVE-2021-28627 | Server-Side Request Forgery (SSRF) vulnerability in Adobe Experience Manager Adobe Experience Manager Cloud Service offering, as well as versions 6.5.8.0 (and below) is affected by a Server-side Request Forgery. | 6.5 |
2021-08-20 | CVE-2020-25353 | Server-Side Request Forgery (SSRF) vulnerability in Rconfig 3.9.5 A server-side request forgery (SSRF) vulnerability in rConfig 3.9.5 has been fixed for 3.9.6. | 4.0 |