Weaknesses of type CWE-918

2,203 results
CVE-2026-33234MEDIUMAutoGPT: SendEmailBlock's IP blocklist bypass allows SSRF via user-controlled SMTP serverEPSS 0.3%CVE-2024-37942HIGHWordPress BerqWP plugin <= 1.7.5 - Unauthenticated Non-Blind Server Side Request Forgery (SSRF) vulnerabilityEPSS 0.3%CVE-2024-25915MEDIUMWordPress Pexels: Free Stock Photos Plugin <= 1.2.2 is vulnerable to Server Side Request Forgery (SSRF)EPSS 0.3%CVE-2025-27406HIGHIcinga Reporting Stored XSS leads to SSRFEPSS 0.3%CVE-2026-5418MEDIUMappsmithorg appsmith Dashboard WebClientUtils.java computeDisallowedHosts server-side request forgeryEPSS 0.3%CVE-2025-14613HIGHGetContentFromURL <= 1.0 - Authenticated (Contributor+) Server-Side Request Forgery via 'url' Shortcode AttributeEPSS 0.3%CVE-2024-40543MEDIUMPublicCMS v4.0.202302.e was discovered to contain a Server-Side Request Forgery (SSRF) via the component /admin/ueditor?action=catchimage.EPSS 0.3%CVE-2026-0686HIGHWebmention <= 5.6.2 - Unauthenticated Blind Server-Side Request ForgeryEPSS 0.3%CVE-2026-41461MEDIUMSocialEngine <= 7.8.0 Blind SSRF via /core/link/previewEPSS 0.3%CVE-2026-30810HIGHServer-Side Request Forgery in API Checker leads to Privilege EscalationEPSS 0.3%CVE-2024-22329MEDIUMIBM WebSphere Application Server server-side request forgeryEPSS 0.3%CVE-2025-3192HIGHVersions of the package spatie/browsershot from 0.0.0 are vulnerable to Server-side Request Forgery (SSRF) in the setUrl() function due to aEPSS 0.3%CVE-2023-45152LOWBlind Server Side Request Forgery (SSRF) in remote schedule import feature in EngelsystemEPSS 0.3%CVE-2026-42860HIGHOpen edx Enterprise Service: SSRF via SAML metadata URL in sync_provider_data endpointEPSS 0.3%CVE-2025-1799MEDIUMZorlan SkyCaiji Tool.php previewAction server-side request forgeryEPSS 0.3%CVE-2026-48843HIGHRoundcube Webmail 1.6.x between 1.6.14 and 1.6.16,and 1.7.x before 1.7.1 has Insufficient Cascading Style Sheets (CSS) sanitization in HTML EPSS 0.3%CVE-2026-42038MEDIUMAxios: no_proxy bypass via IP alias allows SSRFEPSS 0.3%CVE-2026-22664HIGHprompts.chat SSRF via Fal.ai Media Status PollingEPSS 0.3%CVE-2019-25251MEDIUMTeradek VidiU Pro 3.0.3 Server-Side Request Forgery via RTMP SettingsEPSS 0.3%CVE-2025-11242CRITICALSSRF in Teknolist Computer's OkulistikEPSS 0.3%