Weaknesses of type CWE-918
2,157 resultsCVE-2026-54157CRITICALLobeHub: Unauthenticated SSRF in `/webapi/proxy`EPSS 1.8%CVE-2026-25545MEDIUMAstro has Full-Read SSRF in error rendering via Host: header injectionEPSS 1.8%CVE-2026-0560HIGHServer-Side Request Forgery (SSRF) in parisneo/lollmsEPSS 1.8%CVE-2022-34269HIGHAn issue was discovered in RWS WorldServer before 11.7.3. An authenticated, remote attacker can perform a ws-legacy/load_dtd?system_id= blinEPSS 1.7%CVE-2022-24969—bypass of CVE-2021-25640EPSS 1.7%CVE-2022-1767HIGHServer-Side Request Forgery (SSRF) in jgraph/drawioEPSS 1.7%CVE-2021-3959MEDIUMServer-Side Request Forgery in Bitdefender GravityZone Update Server in Relay Mode (VA-10145)EPSS 1.7%CVE-2022-1784HIGHServer-Side Request Forgery (SSRF) in jgraph/drawioEPSS 1.7%CVE-2025-34282MEDIUMThingsBoard < v4.2.1 SVG Image SSRFEPSS 1.7%CVE-2025-27888MEDIUMApache Druid: Server-Side Request Forgery and Cross-Site ScriptingEPSS 1.7%CVE-2022-1723HIGHServer-Side Request Forgery (SSRF) in jgraph/drawioEPSS 1.6%CVE-2020-7329HIGHServer-Side Request Forgery (SSRF) in MVISION Endpoint ePO extensionEPSS 1.6%CVE-2026-42281CRITICALMagicMirror²: Unauthenticated SSRF via /cors endpointEPSS 1.6%CVE-2022-0768HIGHServer-Side Request Forgery (SSRF) in rudloff/alltubeEPSS 1.6%CVE-2023-42282CRITICALThe ip package before 1.1.9 for Node.js might allow SSRF because some IP addresses (such as 0x7f.1) are improperly categorized as globally rEPSS 1.6%CVE-2024-47208CRITICALApache OFBiz: URLs allowing remote use of Groovy expressions, leading to RCEEPSS 1.6%CVE-2022-23544HIGHServer-Side Request Forgery in Metersphere leads to Cross-Site ScriptingEPSS 1.6%CVE-2024-47883CRITICALButterfly has path/URL confusion in resource handling leading to multiple weaknessesEPSS 1.6%CVE-2022-43183HIGHXXL-Job before v2.3.1 contains a Server-Side Request Forgery (SSRF) via the component /admin/controller/JobLogController.java.EPSS 1.6%CVE-2017-11149—Server-side request forgery (SSRF) vulnerability in Downloader in Synology Download Station 3.8.x before 3.8.5-3475 and 3.x before 3.5-2984 EPSS 1.6%