Weaknesses of type CWE-918

2,184 results
CVE-2023-48240CRITICALXWiki Platform sends cookies to external images in rendered diff and is vulnerable to server side request forgeryEPSS 0.7%CVE-2023-7037MEDIUMautomad FileController.php import server-side request forgeryEPSS 0.7%CVE-2023-40630CRITICALExtension - joomcode.com - Unauthenticated LFI/SSRF in JCDashboards component for Joomla 1.0.0-1.1.30EPSS 0.7%CVE-2026-32186CRITICALMicrosoft Bing Elevation of Privilege VulnerabilityEPSS 0.7%CVE-2026-33107CRITICALAzure Databricks Elevation of Privilege VulnerabilityEPSS 0.7%CVE-2023-49094MEDIUMSymbolicator Server Side Request Forgery vulnerabilityEPSS 0.7%CVE-2022-28217Some part of SAP NetWeaver (EP Web Page Composer) does not sufficiently validate an XML document accepted from an untrusted source, which alEPSS 0.7%CVE-2024-12766HIGHSSRF in parisneo/lollms-webuiEPSS 0.7%CVE-2024-12376HIGHServer Side Request Forgery in lm-sys/fastchatEPSS 0.7%CVE-2024-12882HIGHSSRF in comfyanonymous/comfyuiEPSS 0.7%CVE-2023-3235MEDIUMmccms Comic.php pic_api server-side request forgeryEPSS 0.7%CVE-2023-3236MEDIUMmccms Comic.php pic_save server-side request forgeryEPSS 0.7%CVE-2023-6853MEDIUMkalcaddle KodExplorer app.php index server-side request forgeryEPSS 0.7%CVE-2024-36448HIGHApache IoTDB Workbench: SSRF Vulnerability (EOL)EPSS 0.7%CVE-2025-59503CRITICALAzure Compute Resource Provider Elevation of Privilege VulnerabilityEPSS 0.7%CVE-2025-34231HIGHVasion Print (formerly PrinterLogic) SSRF via HP badgeSetup.phpEPSS 0.7%CVE-2022-3708CRITICALWeb Stories <= 1.24.0 - Server Side Request ForgeryEPSS 0.7%CVE-2025-57644CRITICALAccela Automation Platform 22.2.3.0.230103 contains multiple vulnerabilities in the Test Script feature. An authenticated administrative useEPSS 0.7%CVE-2024-41812HIGHtxtdot SSRF vulnerability in /getEPSS 0.7%CVE-2024-41813HIGHtxtdot SSRF vulnerability in /proxyEPSS 0.7%