Vulnerabilities > Server-Side Request Forgery (SSRF)
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-12-07 | CVE-2023-49746 | Server-Side Request Forgery (SSRF) vulnerability in Softaculous Speedycache Server-Side Request Forgery (SSRF) vulnerability in Softaculous Team SpeedyCache – Cache, Optimization, Performance.This issue affects SpeedyCache – Cache, Optimization, Performance: from n/a through 1.1.2. | 4.3 |
2023-12-05 | CVE-2023-46736 | Server-Side Request Forgery (SSRF) vulnerability in Espocrm EspoCRM is an Open Source CRM (Customer Relationship Management) software. | 6.5 |
2023-12-04 | CVE-2023-48910 | Server-Side Request Forgery (SSRF) vulnerability in Microcks Microcks up to 1.17.1 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /jobs and /artifact/download. | 9.8 |
2023-12-01 | CVE-2023-46746 | Server-Side Request Forgery (SSRF) vulnerability in Posthog PostHog provides open-source product analytics, session recording, feature flagging and A/B testing that you can self-host. | 4.3 |
2023-11-30 | CVE-2023-49094 | Server-Side Request Forgery (SSRF) vulnerability in Sentry Symbolicator Symbolicator is a symbolication service for native stacktraces and minidumps with symbol server support. | 4.3 |
2023-11-29 | CVE-2023-6070 | Server-Side Request Forgery (SSRF) vulnerability in Trellix Enterprise Security Manager A server-side request forgery vulnerability in ESM prior to version 11.6.8 allows a low privileged authenticated user to upload arbitrary content, potentially altering configuration. | 4.3 |
2023-11-28 | CVE-2023-48022 | Server-Side Request Forgery (SSRF) vulnerability in Anyscale RAY 2.6.3/2.8.0 Anyscale Ray 2.6.3 and 2.8.0 allows a remote attacker to execute arbitrary code via the job submission API. | 9.8 |
2023-11-28 | CVE-2023-48023 | Server-Side Request Forgery (SSRF) vulnerability in Anyscale RAY 2.6.3/2.8.0 Anyscale Ray 2.6.3 and 2.8.0 allows /log_proxy SSRF. | 9.1 |
2023-11-27 | CVE-2023-46480 | Server-Side Request Forgery (SSRF) vulnerability in Owncast Project Owncast 0.1.1 An issue in OwnCast v.0.1.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via the authHost parameter of the indieauth function. | 9.8 |
2023-11-27 | CVE-2023-5974 | Server-Side Request Forgery (SSRF) vulnerability in WPB Show Core Project WPB Show Core The WPB Show Core WordPress plugin through 2.2 is vulnerable to server-side request forgery (SSRF) via the `path` parameter. | 9.8 |