Weaknesses of type CWE-918
2,194 resultsCVE-2023-23955HIGHAdvanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to a Server-Side Request Forgery vulnerabilityEPSS 0.5%CVE-2024-9309CRITICALSSRF in POST /worker_generate_stream API endpoint in haotian-liu/llavaEPSS 0.5%CVE-2024-22219MEDIUMXML External Entity (XXE) vulnerability in Terminalfour 8.0.0001 through 8.3.18 and XML JDBC versions up to 1.0.4 allows authenticated usersEPSS 0.5%CVE-2026-29226HIGHApache OFBiz: Low-Privilege SSRF in Content ComponentEPSS 0.5%CVE-2025-0184MEDIUMServer-Side Request Forgery (SSRF) in langgenius/difyEPSS 0.5%CVE-2024-51408HIGHAppSmith Community 1.8.3 before 1.46 allows SSRF via New DataSource for application/json requests to 169.254.169.254 to retrieve AWS metadatEPSS 0.5%CVE-2026-34647HIGHAdobe Commerce | Server-Side Request Forgery (SSRF) (CWE-918)EPSS 0.5%CVE-2025-1833MEDIUMzj1983 zz HTTP Request Customer_noticeAction.java sendNotice server-side request forgeryEPSS 0.5%CVE-2026-30118CRITICALscalar/astro v0.1.13 was discovered to contain a Server-Side Request Forgery (SSRF) in the scalar_url query parameter of the Scalar Proxy enEPSS 0.5%CVE-2023-33176MEDIUMBlind SSRF When Uploading Presentation in BigBlueButtonEPSS 0.5%CVE-2023-51451MEDIUMSSRF in symbolicator via invalid protocolEPSS 0.5%CVE-2024-24829MEDIUMSSRF in Sentry via Phabricator integrationEPSS 0.5%CVE-2025-1849MEDIUMzj1983 zz import_data_todb server-side request forgeryEPSS 0.5%CVE-2025-1848MEDIUMzj1983 zz import_data_check server-side request forgeryEPSS 0.5%CVE-2022-46830MEDIUMIn JetBrains TeamCity between 2022.10 and 2022.10.1 a custom STS endpoint allowed internal port scanning.EPSS 0.5%CVE-2023-41327MEDIUMControlled SSRF through URL in the WireMockEPSS 0.5%CVE-2024-33117MEDIUMcrmeb_java v1.3.4 was discovered to contain a Server-Side Request Forgery (SSRF) via the mergeList method in class com.zbkj.front.pub.ImageMEPSS 0.5%CVE-2026-27808MEDIUMMailpit is Vulnerable to Server-Side Request Forgery (SSRF) via Link Check APIEPSS 0.5%CVE-2025-67647HIGHSvelteKit Denial of service and possible SSRF when using prerenderingEPSS 0.5%CVE-2026-45504HIGHMicrosoft Exchange Server Elevation of Privilege VulnerabilityEPSS 0.5%