Weaknesses of type CWE-918
2,196 resultsCVE-2026-33039HIGHAVideo vulnerable to unauthenticated SSRF via HTTP redirect bypass in LiveLinks proxyEPSS 0.5%CVE-2025-25303MEDIUMServer-Side Request Forgery (SSRF) in MouseTooltipTranslatorEPSS 0.5%CVE-2025-67494CRITICALZITADEL Vulnerable to Unauthenticated Full-Read SSRF via V2 LoginEPSS 0.5%CVE-2023-46725HIGHFoodCoopShop Server-Side Request Forgery vulnerabilityEPSS 0.5%CVE-2026-47938CRITICALAdobe Campaign Classic (ACC) | Server-Side Request Forgery (SSRF) (CWE-918)EPSS 0.4%CVE-2025-31116MEDIUMMobile Security Framework (MobSF) has a SSRF Vulnerability fix bypass on assetlinks_check with DNS RebindingEPSS 0.4%CVE-2022-25777MEDIUMServer-Side Request Forgery in Asset sectionEPSS 0.4%CVE-2026-27696HIGHchangedetection.io Vulnerable to Server-Side Request Forgery (SSRF) via Watch URLsEPSS 0.4%CVE-2024-1063MEDIUMAppwrite <= v1.4.13 is affected by a Server-Side Request Forgery (SSRF) via the '/v1/avatars/favicon' endpoint due to an incomplete fix of CEPSS 0.4%CVE-2025-31117MEDIUMOpenEMR Out-of-Band Server-Side Request Forgery (OOB SSRF) VulnerabilityEPSS 0.4%CVE-2024-40632LOWLinkerd potential access to the shutdown endpointEPSS 0.4%CVE-2021-38135HIGHPossible External service interaction Vulnerability in OpenText iManagerEPSS 0.4%CVE-2026-33502CRITICALAVideo has Unauthenticated SSRF via plugin/Live/test.phpEPSS 0.4%CVE-2025-65512HIGHA Server-Side Request Forgery (SSRF) vulnerability was discovered in the webpage-to-markdown conversion feature of markdownify-mcp v0.0.2 anEPSS 0.4%CVE-2024-3448MEDIUMImproper Access Control Leads to Server-Side Request Forgery in MauticEPSS 0.4%CVE-2024-2796CRITICALSSRF in Akana API PlatformEPSS 0.4%CVE-2026-48285HIGHColdFusion | Server-Side Request Forgery (SSRF) (CWE-918)EPSS 0.4%CVE-2026-33024CRITICALAVideo-Encoder has Unauthenticated Blind Server-Side Request Forgery via Public Thumbnail GeneratorEPSS 0.4%CVE-2018-17450MEDIUMAn issue was discovered in GitLab Community and Enterprise Edition before 11.1.7, 11.2.x before 11.2.4, and 11.3.x before 11.3.1. There is SEPSS 0.4%CVE-2025-20371HIGHUnauthenticated Blind Server Side Request Forgery (SSRF) in Splunk EnterpriseEPSS 0.4%