Vulnerabilities > Server-Side Request Forgery (SSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-02-12 | CVE-2019-4741 | Server-Side Request Forgery (SSRF) vulnerability in IBM Content Navigator 3.0.0 IBM Content Navigator 3.0CD is vulnerable to Server Side Request Forgery (SSRF). | 5.0 |
| 2020-02-04 | CVE-2020-8118 | Server-Side Request Forgery (SSRF) vulnerability in multiple products An authenticated server-side request forgery in Nextcloud server 16.0.1 allowed to detect local and remote services when adding a new subscription in the calendar application. | 4.0 |
| 2020-02-04 | CVE-2020-3938 | Server-Side Request Forgery (SSRF) vulnerability in Sysjust Syuan-Gu-Da-Shin SysJust Syuan-Gu-Da-Shih, versions before 20191223, contain vulnerability of Request Forgery, allowing attackers to launch inquiries into network architecture or system files of the server via forged inquests. | 5.0 |
| 2020-01-28 | CVE-2013-4864 | Server-Side Request Forgery (SSRF) vulnerability in Micasaverde Veralite Firmware 1.5.408 MiCasaVerde VeraLite with firmware 1.5.408 allows remote attackers to send HTTP requests to intranet servers via the url parameter to cgi-bin/cmh/proxy.sh, related to a Server-Side Request Forgery (SSRF) issue. | 7.5 |
| 2020-01-28 | CVE-2019-5464 | Server-Side Request Forgery (SSRF) vulnerability in Gitlab A flawed DNS rebinding protection issue was discovered in GitLab CE/EE 10.2 and later in the `url_blocker.rb` which could result in SSRF where the library is utilized. | 7.5 |
| 2020-01-23 | CVE-2007-6758 | Server-Side Request Forgery (SSRF) vulnerability in Sencha EXT JS 5.0.0 Server-side request forgery (SSRF) vulnerability in feed-proxy.php in extjs 5.0.0. | 5.0 |
| 2020-01-23 | CVE-2019-19835 | Server-Side Request Forgery (SSRF) vulnerability in Ruckuswireless Unleashed and Zonedirector 1200 Firmware SSRF in AjaxRestrictedCmdStat in zap in Ruckus Wireless Unleashed through 200.7.10.102.64 allows a remote denial of service via the server attribute to the tools/_rcmdstat.jsp URI. | 5.0 |
| 2020-01-09 | CVE-2020-1925 | Server-Side Request Forgery (SSRF) vulnerability in Apache Olingo Apache Olingo versions 4.0.0 to 4.7.0 provide the AsyncRequestWrapperImpl class which reads a URL from the Location header, and then sends a GET or DELETE request to this URL. | 5.0 |
| 2020-01-03 | CVE-2019-19261 | Server-Side Request Forgery (SSRF) vulnerability in Gitlab GitLab Enterprise Edition (EE) 6.7 and later through 12.5 allows SSRF. | 6.8 |
| 2019-12-30 | CVE-2018-20499 | Server-Side Request Forgery (SSRF) vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.x before 11.4.13, 11.5.x before 11.5.6, and 11.6.x before 11.6.1. | 6.4 |