Vulnerabilities > Server-Side Request Forgery (SSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-06 | CVE-2024-38206 | Server-Side Request Forgery (SSRF) vulnerability in Microsoft Copilot Studio An authenticated attacker can bypass Server-Side Request Forgery (SSRF) protection in Microsoft Copilot Studio to leak sensitive information over a network. | 6.5 |
| 2024-08-05 | CVE-2024-42352 | Server-Side Request Forgery (SSRF) vulnerability in Nuxt Nuxt is a free and open-source framework to create full-stack web applications and websites with Vue.js. | 7.5 |
| 2024-08-05 | CVE-2024-39713 | Server-Side Request Forgery (SSRF) vulnerability in Rocket.Chat A Server-Side Request Forgery (SSRF) affects Rocket.Chat's Twilio webhook endpoint before version 6.10.1. | 8.6 |
| 2024-08-01 | CVE-2024-2090 | Server-Side Request Forgery (SSRF) vulnerability in Doublesharp Remote Content Shortcode The Remote Content Shortcode plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.5 via the remote_content shortcode. | 6.4 |
| 2024-08-01 | CVE-2024-7330 | Server-Side Request Forgery (SSRF) vulnerability in Youdiancms 7.0 A vulnerability has been found in YouDianCMS 7 and classified as critical. | 6.3 |
| 2024-07-31 | CVE-2024-6980 | Server-Side Request Forgery (SSRF) vulnerability in Bitdefender Gravityzone A verbose error handling issue in the proxy service implemented in the GravityZone Update Server allows an attacker to cause a server-side request forgery. This issue only affects GravityZone Console versions before 6.38.1-5 running only on premise. | 9.8 |
| 2024-07-30 | CVE-2024-41305 | Server-Side Request Forgery (SSRF) vulnerability in Wondercms 3.4.3 A Server-Side Request Forgery (SSRF) in the Plugins Page of WonderCMS v3.4.3 allows attackers to force the application to make arbitrary requests via injection of crafted URLs into the pluginThemeUrl parameter. | 4.7 |
| 2024-07-26 | CVE-2024-41118 | Server-Side Request Forgery (SSRF) vulnerability in Opengeos Streamlit-Geospatial streamlit-geospatial is a streamlit multipage app for geospatial applications. | 9.8 |
| 2024-07-26 | CVE-2024-41120 | Server-Side Request Forgery (SSRF) vulnerability in Opengeos Streamlit-Geospatial streamlit-geospatial is a streamlit multipage app for geospatial applications. | 9.8 |
| 2024-07-26 | CVE-2024-41812 | Server-Side Request Forgery (SSRF) vulnerability in Txtdot txtdot is an HTTP proxy that parses only text, links, and pictures from pages, removing ads and heavy scripts. | 7.5 |