Vulnerabilities > Server-Side Request Forgery (SSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-10-20 | CVE-2020-6308 | Server-Side Request Forgery (SSRF) vulnerability in SAP Businessobjects Business Intelligence Platform 4.1/4.2/4.3 SAP BusinessObjects Business Intelligence Platform (Web Services) versions - 410, 420, 430, allows an unauthenticated attacker to inject arbitrary values as CMS parameters to perform lookups on the internal network which is otherwise not accessible externally. | 5.3 |
| 2020-10-19 | CVE-2020-15822 | Server-Side Request Forgery (SSRF) vulnerability in Jetbrains Youtrack In JetBrains YouTrack before 2020.2.10514, SSRF is possible because URL filtering can be escaped. | 7.3 |
| 2020-10-17 | CVE-2020-27197 | Server-Side Request Forgery (SSRF) vulnerability in multiple products TAXII libtaxii through 1.1.117, as used in EclecticIQ OpenTAXII through 0.2.0 and other products, allows SSRF via an initial http:// substring to the parse method, even when the no_network setting is used for the XML parser. | 9.8 |
| 2020-10-10 | CVE-2020-26948 | Server-Side Request Forgery (SSRF) vulnerability in Emby Emby Server before 4.5.0 allows SSRF via the Items/RemoteSearch/Image ImageURL parameter. | 9.8 |
| 2020-10-01 | CVE-2020-5784 | Server-Side Request Forgery (SSRF) vulnerability in Teltonika-Networks Trb245 Firmware 00.02.04.03 Server-Side Request Forgery in Teltonika firmware TRB2_R_00.02.04.3 allows a low privileged user to cause the application to perform HTTP GET requests to arbitrary URLs. | 6.5 |
| 2020-09-30 | CVE-2020-24570 | Server-Side Request Forgery (SSRF) vulnerability in Mbconnectline Mbconnect24 and Mymbconnect24 An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.1. | 6.5 |
| 2020-09-30 | CVE-2020-15594 | Server-Side Request Forgery (SSRF) vulnerability in Zohocorp Manageengine Application Control Plus An SSRF issue was discovered in Zoho Application Control Plus before version 10.0.511. | 4.3 |
| 2020-09-22 | CVE-2020-14023 | Server-Side Request Forgery (SSRF) vulnerability in Ozeki NG SMS Gateway Ozeki NG SMS Gateway through 4.17.6 allows SSRF via SMS WCF or RSS To SMS. | 4.9 |
| 2020-09-21 | CVE-2020-16171 | Server-Side Request Forgery (SSRF) vulnerability in Acronis Cyber Backup 12.5 An issue was discovered in Acronis Cyber Backup before 12.5 Build 16342. | 6.5 |
| 2020-09-18 | CVE-2020-15772 | Server-Side Request Forgery (SSRF) vulnerability in Gradle Enterprise An issue was discovered in Gradle Enterprise 2018.5 - 2020.2.4. | 4.9 |