Vulnerabilities > Server-Side Request Forgery (SSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-09-16 | CVE-2019-15728 | Server-Side Request Forgery (SSRF) vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition 10.1 through 12.2.1. | 7.5 |
| 2019-09-11 | CVE-2019-8451 | Server-Side Request Forgery (SSRF) vulnerability in Atlassian Jira Server The /plugins/servlet/gadgets/makeRequest resource in Jira before version 8.4.0 allows remote attackers to access the content of internal network resources via a Server Side Request Forgery (SSRF) vulnerability due to a logic bug in the JiraWhitelist class. | 6.5 |
| 2019-09-10 | CVE-2019-12996 | Server-Side Request Forgery (SSRF) vulnerability in Mendix In Mendix 7.23.5 and earlier, issue in XML import mappings allow DOCTYPE declarations in the XML input that is potentially unsafe. | 5.3 |
| 2019-09-09 | CVE-2019-6793 | Server-Side Request Forgery (SSRF) vulnerability in Gitlab An issue was discovered in GitLab Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. | 7.0 |
| 2019-09-05 | CVE-2019-12633 | Server-Side Request Forgery (SSRF) vulnerability in Cisco Unified Contact Center Express A vulnerability in Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side request forgery (SSRF) attack on a targeted system. | 7.5 |
| 2019-09-05 | CVE-2019-12632 | Server-Side Request Forgery (SSRF) vulnerability in Cisco Finesse 11.6(1)/12.0(1)/12.5(1) A vulnerability in Cisco Finesse could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side request forgery (SSRF) attack on an affected system. | 7.5 |
| 2019-08-26 | CVE-2019-13020 | Server-Side Request Forgery (SSRF) vulnerability in Trms Tightrope Media Carousel The fetch API in Tightrope Media Carousel before 7.1.3 has CarouselAPI/v0/fetch?url= SSRF. | 10.0 |
| 2019-08-23 | CVE-2019-15494 | Server-Side Request Forgery (SSRF) vulnerability in It-Novum Openitcockpit openITCOCKPIT before 3.7.1 allows SSRF, aka RVID 5-445b21. | 9.8 |
| 2019-08-22 | CVE-2016-10927 | Server-Side Request Forgery (SSRF) vulnerability in Neliosoftware Nelio AB Testing The nelio-ab-testing plugin before 4.5.11 for WordPress has SSRF in ajax/iesupport.php. | 10.0 |
| 2019-08-22 | CVE-2016-10926 | Server-Side Request Forgery (SSRF) vulnerability in Neliosoftware Nelio AB Testing The nelio-ab-testing plugin before 4.5.9 for WordPress has SSRF in ajax/iesupport.php. | 10.0 |