Vulnerabilities > Server-Side Request Forgery (SSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-05-14 | CVE-2019-6512 | Server-Side Request Forgery (SSRF) vulnerability in Wso2 API Manager 2.6.0 An issue was discovered in WSO2 API Manager 2.6.0. | 4.1 |
| 2019-05-10 | CVE-2019-11066 | Server-Side Request Forgery (SSRF) vulnerability in Lightopenid Project Lightopenid 1.3.0/1.3.1 openid.php in LightOpenID through 1.3.1 allows SSRF via a crafted OpenID 2.0 assertion request using the HTTP GET method. | 9.8 |
| 2019-05-09 | CVE-2019-7652 | Server-Side Request Forgery (SSRF) vulnerability in Thehive-Project Cortex-Analyzers TheHive Project UnshortenLink analyzer before 1.1, included in Cortex-Analyzers before 1.15.2, has SSRF. | 7.7 |
| 2019-05-05 | CVE-2019-11767 | Server-Side Request Forgery (SSRF) vulnerability in PHPbb Server side request forgery (SSRF) in phpBB before 3.2.6 allows checking for the existence of files and services on the local network of the host through the remote avatar upload function. | 5.8 |
| 2019-05-01 | CVE-2019-0227 | Server-Side Request Forgery (SSRF) vulnerability in multiple products A Server Side Request Forgery (SSRF) vulnerability affected the Apache Axis 1.4 distribution that was last released in 2006. | 7.5 |
| 2019-04-30 | CVE-2019-9621 | Server-Side Request Forgery (SSRF) vulnerability in Zimbra Collaboration Server Zimbra Collaboration Suite before 8.6 patch 13, 8.7.x before 8.7.11 patch 10, and 8.8.x before 8.8.10 patch 7 or 8.8.x before 8.8.11 patch 3 allows SSRF via the ProxyServlet component. | 7.5 |
| 2019-04-27 | CVE-2019-11565 | Server-Side Request Forgery (SSRF) vulnerability in Print MY Blog Project Print MY Blog Server Side Request Forgery (SSRF) exists in the Print My Blog plugin before 1.6.7 for WordPress via the site parameter. | 9.8 |
| 2019-04-17 | CVE-2019-9174 | Server-Side Request Forgery (SSRF) vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. | 10.0 |
| 2019-04-15 | CVE-2019-4203 | Server-Side Request Forgery (SSRF) vulnerability in IBM API Connect IBM API Connect 5.0.0.0 and 5.0.8.6 Developer Portal can be exploited by app developers to download arbitrary files from the host OS and potentially carry out SSRF attacks. | 9.8 |
| 2019-04-01 | CVE-2019-10686 | Server-Side Request Forgery (SSRF) vulnerability in Ctrip Apollo An SSRF vulnerability was found in an API from Ctrip Apollo through 1.4.0-SNAPSHOT. | 10.0 |