Weaknesses of type CWE-918
2,203 resultsCVE-2024-0216MEDIUMGoogle Doc Embedder <= 2.6.4 - Authenticated (Contributor+) Blind Server Side Request ForgeryEPSS 0.3%CVE-2024-31991MEDIUMMealie vulnerable to a GET-based SSRF in recipe importer (GHSL-2023-225)EPSS 0.3%CVE-2023-4893MEDIUMCrayon Syntax Highlighter <= 2.8.4 - Authenticated (Contributor+) Server Side Request ForgeryEPSS 0.3%CVE-2026-28416HIGHGradio has SSRF via Malicious `proxy_url` Injection in `gr.load()` Config ProcessingEPSS 0.3%CVE-2026-39974HIGHn8n-MCP has an Authenticated SSRF via instance-URL header in multi-tenant HTTP modeEPSS 0.3%CVE-2026-6394MEDIUMNexa Blocks <= 1.1.1 - Unauthenticated Blind Server-Side Request Forgery via 'demo_json_file' ParameterEPSS 0.3%CVE-2026-29925HIGHInvoice Ninja v5.12.46 and v5.12.48 is vulnerable to Server-Side Request Forgery (SSRF) in CheckDatabaseRequest.php.EPSS 0.3%CVE-2025-47791MEDIUMNextcloud Server's test remote endpoint is not rate limitedEPSS 0.3%CVE-2023-3577LOWLimited blind SSRF to localhost/intranet in interactive dialog implementationEPSS 0.3%CVE-2026-42595HIGHGotenberg: Server-Side Request Forgery via Chromium URL Endpoint with Redirect-Based Deny-List BypassEPSS 0.3%CVE-2025-9975MEDIUMWP Scraper <= 5.8.1 - Authenticated (Administrator+) Server-Side Request ForgeryEPSS 0.3%CVE-2025-61768MEDIUMKuno CMS Vulnerable to Server-Side Request Forgery (SSRF) via Unsafe SVG UploadEPSS 0.3%CVE-2026-2556MEDIUMcskefu Endpoint MediaController.java server-side request forgeryEPSS 0.3%CVE-2023-47635MEDIUMDecidim vulnerable to possible CSRF attack at questionnaire templates previewEPSS 0.3%CVE-2026-1273HIGHPostX <= 5.0.8 - Authenticated (Administrator+) Server-Side Request Forgery via REST API EndpointsEPSS 0.3%CVE-2023-46641MEDIUMWordPress 12 Step Meeting List Plugin <= 3.14.24 is vulnerable to Server Side Request Forgery (SSRF)EPSS 0.3%CVE-2026-3286MEDIUMitwanger paicoding Image Save Endpoint ImageRestController.java save server-side request forgeryEPSS 0.3%CVE-2026-11989MEDIUMBit integrations <= 2.8.7 - Unauthenticated Server-Side Request Forgery via Form Field Upload MappingEPSS 0.3%CVE-2025-53371CRITICALDiscordNotifications allows DOS, SSRF, and possible RCE through requests to user-controlled URLsEPSS 0.3%CVE-2024-48951HIGHAn issue was discovered in Logpoint before 7.5.0. Server-Side Request Forgery (SSRF) on SOAR can be used to leak Logpoint's API Token leadinEPSS 0.3%