Vulnerabilities > Server-Side Request Forgery (SSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-01 | CVE-2021-26072 | Server-Side Request Forgery (SSRF) vulnerability in Atlassian Confluence Server The WidgetConnector plugin in Confluence Server and Confluence Data Center before version 5.8.6 allowed remote attackers to manipulate the content of internal network resources via a blind Server-Side Request Forgery (SSRF) vulnerability. | 4.3 |
| 2021-04-01 | CVE-2020-19613 | Server-Side Request Forgery (SSRF) vulnerability in Flycms Project Flycms 20190503 Server Side Request Forgery (SSRF) vulnerability in saveUrlAs function in ImagesService.java in sunkaifei FlyCMS version 20190503. | 7.5 |
| 2021-03-31 | CVE-2021-21975 | Server-Side Request Forgery (SSRF) vulnerability in VMWare products Server Side Request Forgery in vRealize Operations Manager API (CVE-2021-21975) prior to 8.4 may allow a malicious actor with network access to the vRealize Operations Manager API can perform a Server Side Request Forgery attack to steal administrative credentials. | 7.5 |
| 2021-03-31 | CVE-2021-22986 | Server-Side Request Forgery (SSRF) vulnerability in F5 products On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, and 12.1.x before 12.1.5.3 amd BIG-IQ 7.1.0.x before 7.1.0.3 and 7.0.0.x before 7.0.0.2, the iControl REST interface has an unauthenticated remote command execution vulnerability. | 9.8 |
| 2021-03-26 | CVE-2021-1627 | Server-Side Request Forgery (SSRF) vulnerability in Salesforce Mule MuleSoft is aware of a Server Side Request Forgery vulnerability affecting certain versions of a Mule runtime component that may affect both CloudHub and on-premise customers. | 9.8 |
| 2021-03-25 | CVE-2021-26715 | Server-Side Request Forgery (SSRF) vulnerability in Mitreid Connect The OpenID Connect server implementation for MITREid Connect through 1.3.3 contains a Server Side Request Forgery (SSRF) vulnerability. | 9.1 |
| 2021-03-24 | CVE-2021-22179 | Server-Side Request Forgery (SSRF) vulnerability in Gitlab A vulnerability was discovered in GitLab versions before 12.2. | 5.4 |
| 2021-03-24 | CVE-2021-22178 | Server-Side Request Forgery (SSRF) vulnerability in Gitlab An issue has been discovered in GitLab affecting all versions starting from 13.2. | 5.0 |
| 2021-03-24 | CVE-2020-15809 | Server-Side Request Forgery (SSRF) vulnerability in Spinetix products spxmanage on certain SpinetiX devices allows requests that access unintended resources because of SSRF and Path Traversal. | 6.5 |
| 2021-03-22 | CVE-2020-4882 | Server-Side Request Forgery (SSRF) vulnerability in IBM Planning Analytics 2.0 IBM Planning Analytics 2.0 could be vulnerable to a Server-Side Request Forgery (SSRF) attack by constucting URLs from user-controlled data . | 6.1 |