Weaknesses of type CWE-918

2,192 results
CVE-2023-5122MEDIUMSSRF in CSV Datasource PluginEPSS 0.5%CVE-2023-46207MEDIUMWordPress Motors – Car Dealer & Classified Ads Plugin <= 1.4.6 is vulnerable to Server Side Request Forgery (SSRF)EPSS 0.5%CVE-2026-32133HIGH2FAuth has Blind SSRF in image parameter allows internal network access and moreEPSS 0.5%CVE-2024-23500HIGHWordPress Kadence Blocks plugin <= 3.2.19 - Server Side Request Forgery (SSRF) vulnerabilityEPSS 0.5%CVE-2024-10044CRITICALSSRF in POST /worker_generate_stream API endpoint in lm-sys/fastchatEPSS 0.5%CVE-2026-49328MEDIUMApache Fesod (Incubating): Improper validation of user-supplied URLs leading to SSRFEPSS 0.5%CVE-2024-6784HIGHSSRF Server Side Request ForgeryEPSS 0.5%CVE-2025-68616HIGHWeasyPrint Vulnerable to Server-Side Request Forgery (SSRF) Protection Bypass via HTTP RedirectEPSS 0.5%CVE-2025-0584MEDIUMaEnrich Technology a+HRD - Server-Side Request Forgery (SSRF)EPSS 0.5%CVE-2024-0303MEDIUMYouke365 Parameter caiji.php server-side request forgeryEPSS 0.5%CVE-2024-0304MEDIUMYouke365 collect.php server-side request forgeryEPSS 0.5%CVE-2026-47356HIGHTerrascan v1.18.3 and prior are vulnerable to Server-Side Request Forgery (SSRF) via the webhook_url parameter in the file scan endpoint (POEPSS 0.5%CVE-2023-46784HIGHWordPress ICS Calendar plugin <= 10.12.0.3 - SSRF and Arbitrary File Read vulnerabilityEPSS 0.5%CVE-2025-61735HIGHApache Kylin: Server-Side Request ForgeryEPSS 0.5%CVE-2026-30637HIGHServer-Side Request Forgery (SSRF) vulnerability exists in the AnnounContent of the /admin/read.php in OTCMS V7.66 and before. The vulnerabiEPSS 0.5%CVE-2026-30840HIGHWallos: Server-Side Request Forgery (SSRF) in Notification TestersEPSS 0.5%CVE-2026-42404MEDIUMApache Neethi: Unrestricted HTTP Redirect Following in Policy ReferencesEPSS 0.5%CVE-2026-27739CRITICALAngular SSR is vulnerable to SSRF and Header Injection via request handling pipelineEPSS 0.5%CVE-2024-48450MEDIUMAn arbitrary file upload vulnerability in Huly Platform v0.6.295 allows attackers to execute arbitrary code via uploading a crafted HTML filEPSS 0.5%CVE-2023-6124MEDIUMServer-Side Request Forgery (SSRF) in salesagility/suitecrmEPSS 0.5%