Fallos del tipo CWE-918
2172 resultadosCVE-2025-45691HIGHAn Arbitrary File Read vulnerability exists in the ImageTextPromptValue class in Exploding Gradients RAGAS v0.2.3 to v0.2.14. The vulnerabilEPSS 0.5%CVE-2024-0243LOWServer-side Request Forgery In Recursive URL LoaderEPSS 0.5%CVE-2024-2343MEDIUMAvada <= 7.11.6 - Authenticated (Contributor+) Server-Side Request Forgery via form_to_url_actionEPSS 0.5%CVE-2026-7412HIGHIn Eclipse BaSyx Java Server SDK versions prior to 2.0.0-milestone-10, the Operation Delegation feature fails to validate the destination UREPSS 0.5%CVE-2026-22039CRITICALKyverno Cross-Namespace Privilege Escalation via Policy apiCallEPSS 0.5%CVE-2025-1522HIGHPostHog database_schema Server-Side Request Forgery Information Disclosure VulnerabilityEPSS 0.5%CVE-2023-41339HIGHUnsecured WMS dynamic styling sld=<url> parameter affords blind unauthenticated SSRF in GeoServerEPSS 0.5%CVE-2025-34232MEDIUMVasion Print (formerly PrinterLogic) Blind SSRF via Lexmark dellCheck.phpEPSS 0.5%CVE-2022-1722HIGHSSRF in editor's proxy via IPv6 link-local address in jgraph/drawioEPSS 0.5%CVE-2025-1220LOWNull byte termination in hostnamesEPSS 0.5%CVE-2024-13032MEDIUMAntabot White-Jotter Article Editor editor server-side request forgeryEPSS 0.5%CVE-2026-35431CRITICALMicrosoft Entra ID Entitlement Management Spoofing VulnerabilityEPSS 0.5%CVE-2024-3970MEDIUMServer-Side Request Forgery vulnerability in iManagerEPSS 0.5%CVE-2025-34051MEDIUMAVTECH DVR Devices Server-Side Request ForgeryEPSS 0.5%CVE-2024-31215MEDIUMMobile Security Framework (MobSF) vulnerable to Server-Side Request Forgery (SSRF) in firebase database checkEPSS 0.5%CVE-2023-5122MEDIUMSSRF in CSV Datasource PluginEPSS 0.5%CVE-2023-46207MEDIUMWordPress Motors – Car Dealer & Classified Ads Plugin <= 1.4.6 is vulnerable to Server Side Request Forgery (SSRF)EPSS 0.5%CVE-2026-32133HIGH2FAuth has Blind SSRF in image parameter allows internal network access and moreEPSS 0.5%CVE-2024-23500HIGHWordPress Kadence Blocks plugin <= 3.2.19 - Server Side Request Forgery (SSRF) vulnerabilityEPSS 0.5%CVE-2024-10044CRITICALSSRF in POST /worker_generate_stream API endpoint in lm-sys/fastchatEPSS 0.5%