Vulnerabilities > Server-Side Request Forgery (SSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-19 | CVE-2024-43379 | Server-Side Request Forgery (SSRF) vulnerability in Trufflesecurity Trufflehog TruffleHog is a secrets scanning tool. | 3.1 |
| 2024-08-15 | CVE-2024-22217 | Server-Side Request Forgery (SSRF) vulnerability in Terminalfour A Server-Side Request Forgery (SSRF) vulnerability in Terminalfour before 8.3.19 allows authenticated users to use specific features to access internal services including sensitive information on the server that Terminalfour runs on. | 6.5 |
| 2024-08-13 | CVE-2024-7742 | Server-Side Request Forgery (SSRF) vulnerability in Ltcms 1.0.20 A vulnerability was found in wanglongcn ltcms 1.0.20. | 9.8 |
| 2024-08-13 | CVE-2024-7743 | Server-Side Request Forgery (SSRF) vulnerability in Ltcms 1.0.20 A vulnerability was found in wanglongcn ltcms 1.0.20. | 9.8 |
| 2024-08-13 | CVE-2024-7740 | Server-Side Request Forgery (SSRF) vulnerability in Ltcms 1.0.20 A vulnerability has been found in wanglongcn ltcms 1.0.20 and classified as critical. | 9.8 |
| 2024-08-13 | CVE-2024-38109 | Server-Side Request Forgery (SSRF) vulnerability in Microsoft Azure Health BOT An authenticated attacker can exploit an Server-Side Request Forgery (SSRF) vulnerability in Microsoft Azure Health Bot to elevate privileges over a network. | 8.8 |
| 2024-08-13 | CVE-2024-41737 | Server-Side Request Forgery (SSRF) vulnerability in SAP CRM Abap Insights Management SAP CRM ABAP (Insights Management) allows an authenticated attacker to enumerate HTTP endpoints in the internal network by specially crafting HTTP requests. | 5.0 |
| 2024-08-12 | CVE-2024-41651 | Server-Side Request Forgery (SSRF) vulnerability in Prestashop An issue in Prestashop v.8.1.7 and before allows a remote attacker to execute arbitrary code via the module upgrade functionality. | 8.1 |
| 2024-08-12 | CVE-2024-39338 | Server-Side Request Forgery (SSRF) vulnerability in Axios 1.5.1 axios 1.7.2 allows SSRF via unexpected behavior where requests for path relative URLs get processed as protocol relative URLs. | 7.5 |
| 2024-08-12 | CVE-2024-41570 | Server-Side Request Forgery (SSRF) vulnerability in Havocframework Havoc An Unauthenticated Server-Side Request Forgery (SSRF) in demon callback handling in Havoc 2 0.7 allows attackers to send arbitrary network traffic originating from the team server. | 9.8 |