Falhas do tipo CWE-918
2.187 resultadosCVE-2024-13450LOWContact Form by Bit Form <= 2.17.4 - Authenticated (Administrator+) Server-Side Request ForgeryEPSS 0.4%CVE-2025-14516MEDIUMYalantis uCrop URL com.yalantis.ucrop.task.BitmapLoadTask.java downloadFile server-side request forgeryEPSS 0.4%CVE-2024-46947MEDIUMNorthern.tech Mender before 3.6.6 and 3.7.x before 3.7.7 allows SSRF.EPSS 0.4%CVE-2026-30247MEDIUMWeKnora: SSRF via RedirectionEPSS 0.4%CVE-2025-5186MEDIUMthinkgem JeeSite URI Scheme form ResourceLoader.getResource server-side request forgeryEPSS 0.4%CVE-2025-3572HIGHINTUMIT SmartRobot - Server-Side Request ForgeryEPSS 0.4%CVE-2024-13904MEDIUMPlatform.ly for WooCommerce <= 1.1.6 - Unauthenticated Blind Server-Side Request ForgeryEPSS 0.4%CVE-2026-28798CRITICALArbitrary internal service access via /v1/sys/proxy when Cloudflare Tunnel is enabled on ZimaOSEPSS 0.4%CVE-2026-42353HIGHPath traversal / SSRF in i18next-http-middleware via user-controlled language and namespace parametersEPSS 0.4%CVE-2025-1970HIGHExport and Import Users and Customers <= 2.6.2 - Authenticated (Administrator+) Server-Side Request Forgery via validate_file FunctionEPSS 0.4%CVE-2026-8606HIGHServer-Side Request Forgery in GitHub Enterprise Server via Advisory Package URL EndpointEPSS 0.4%CVE-2023-42450MEDIUMMastodon Server-Side Request Forgery vulnerabilityEPSS 0.4%CVE-2025-3412MEDIUMmymagicpower AIAS InferController.java server-side request forgeryEPSS 0.4%CVE-2024-29319LOWVolmarg Personal Management System 1.4.64 is vulnerable to SSRF (Server Side Request Forgery) via uploading a SVG file. The server can make EPSS 0.4%CVE-2026-40500MEDIUMProcessWire CMS SSRF via Add Module From URLEPSS 0.4%CVE-2026-8768MEDIUMvercel ai provider-utils download-blob.ts validateDownloadUrl server-side request forgeryEPSS 0.4%CVE-2025-3411MEDIUMmymagicpower AIAS AsrController.java server-side request forgeryEPSS 0.4%CVE-2025-4012MEDIUMplayeduxyz PlayEdu 开源培训系统 User Avatar create server-side request forgeryEPSS 0.4%CVE-2024-32803MEDIUMWordPress SuperFaktura WooCommerce plugin <= 1.40.3 - Server Side Request Forgery (SSRF) vulnerabilityEPSS 0.4%CVE-2026-44016HIGHDocling: Unsafe Playwright-based HTML RenderingEPSS 0.4%