Weaknesses of type CWE-918

2,185 results
CVE-2025-8228MEDIUMyanyutao0402 ChanCMS getPages server-side request forgeryEPSS 0.6%CVE-2022-38187HIGHPrevent access to sharing/rest/content/features/analyze to unauthorized usersEPSS 0.6%CVE-2026-32210CRITICALMicrosoft Dynamics 365 (online) Spoofing VulnerabilityEPSS 0.6%CVE-2025-5350MEDIUMSSRF and Reflected XSS Vulnerability in Deprecated Try-It Feature of Multiple WSO2 ProductsEPSS 0.6%CVE-2024-27775HIGHSysAid - CWE-918: Server-Side Request Forgery (SSRF)EPSS 0.6%CVE-2023-28112MEDIUMDiscourse's SSRF protection missing for some FastImage requestsEPSS 0.6%CVE-2024-52598HIGH2FAuth vulnerable to Server Side Request Forgery + URI validation bypass in 2fauth /api/v1/twofaccounts/previewEPSS 0.6%CVE-2024-41668HIGHcBioPortal Proxy Endpoint VulnerabliityEPSS 0.6%CVE-2026-25580HIGHPydantic AI Affected by Server-Side Request Forgery (SSRF) in URL Download HandlingEPSS 0.6%CVE-2024-45290HIGHPath traversal and Server-Side Request Forgery when opening XLSX files in PHPSpreadsheetEPSS 0.6%CVE-2024-2057MEDIUMLangChain langchain_community TFIDFRetriever tfidf.py load_local server-side request forgeryEPSS 0.6%CVE-2025-27090MEDIUMServer-Side Request Forgery (SSRF) in sliver teamserverEPSS 0.6%CVE-2024-11618MEDIUMIPC Unigy Management System HTTP Request server-side request forgeryEPSS 0.6%CVE-2026-7049HIGHPixelYourSite Pro <= 12.5.0.1 - Unauthenticated Blind Server-Side Request Forgery via 'urls[]' ParameterEPSS 0.6%CVE-2022-42894HIGHA vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). An unauthenticated Server-Side Request Forgery (SSRF) vulEPSS 0.6%CVE-2024-48944MEDIUMApache Kylin: SSRF vulnerability in the diagnosis apiEPSS 0.6%CVE-2024-4851HIGHSSRF Vulnerability in stangirard/quivrEPSS 0.6%CVE-2025-64430HIGHParse Server Vulnerable to Server-Side Request Forgery (SSRF) in File Upload via URI FormatEPSS 0.6%CVE-2025-54590MEDIUMwebfinger.js is vulnerable to Blind SSRF attacks through localhostEPSS 0.6%CVE-2024-1467MEDIUMStarter Templates — Elementor, WordPress & Beaver Builder Templates <= 4.1.6 - Authenticated (Contributor+) Server-Side Request ForgeryEPSS 0.6%