VYPR

CWE-918

Server-Side Request Forgery (SSRF)

BaseIncomplete

Description

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.

Hierarchy (View 1000)

Parents

Children

none

Related attack patterns (CAPEC)

CAPEC-664

CVEs mapped to this weakness (1,583)

page 50 of 80
  • CVE-2026-7604MedMay 2, 2026
    risk 0.34cvss 6.3epss 0.00

    A vulnerability was identified in JeecgBoot up to 3.9.1. This affects the function OpenApiController.add/OpenApiController.call of the file OpenApiController.java of the component OpenApi Service. Such manipulation of the argument originUrl database leads to server-side request…

  • CVE-2026-7603MedMay 2, 2026
    risk 0.34cvss 6.3epss 0.00

    A vulnerability was determined in JeecgBoot up to 3.9.1. Affected by this issue is the function checkPathTraversalBatch of the file FileDownloadUtils.jav of the component LoadFile Endpoint. This manipulation of the argument files causes server-side request forgery. It is…

  • CVE-2026-7305MedApr 28, 2026
    risk 0.34cvss 6.3epss 0.00

    A weakness has been identified in Xuxueli xxl-job up to 3.3.2. The affected element is the function triggerJob of the file xxl-job-admin/src/main/java/com/xxl/job/admin/service/impl/XxlJobServiceImpl.java of the component trigger Endpoint. This manipulation of the argument…

  • CVE-2026-7084MedApr 27, 2026
    risk 0.34cvss 6.3epss 0.00

    A vulnerability was found in HBAI-Ltd Toonflow-app up to 1.1.1. This affects the function fetch of the file src/routes/setting/vendorConfig/getCodeByLink.ts of the component getCodeByLink Endpoint. The manipulation of the argument Link results in server-side request forgery. The…

  • CVE-2026-6617MedApr 20, 2026
    risk 0.34cvss 6.3epss 0.00

    A vulnerability was detected in langgenius dify up to 0.6.9. This vulnerability affects the function get_api_tool_provider_remote_schema of the file api/services/tools/api_tools_manage_service.py of the component ApiToolManageService. Performing a manipulation of the argument…

  • CVE-2026-6119MedApr 12, 2026
    risk 0.34cvss 6.3epss 0.00

    A vulnerability was identified in AstrBotDevs AstrBot up to 4.22.1. The affected element is the function post_data.get of the component API Endpoint. Such manipulation leads to server-side request forgery. The attack may be performed from remote. The exploit is publicly…

  • CVE-2026-6111MedApr 12, 2026
    risk 0.34cvss 6.3epss 0.00

    A security flaw has been discovered in FoundationAgents MetaGPT up to 0.8.1. This impacts the function decode_image of the file metagpt/utils/common.py. The manipulation of the argument img_url_or_b64 results in server-side request forgery. It is possible to launch the attack…

  • CVE-2026-39922MedApr 10, 2026
    risk 0.34cvss 6.3epss 0.00

    GeoNode versions 4.4.5 and 5.0.2 (and prior within their respective releases) contain a server-side request forgery vulnerability in the service registration endpoint that allows authenticated attackers to trigger outbound network requests to arbitrary URLs by submitting a…

  • CVE-2026-39921MedApr 10, 2026
    risk 0.34cvss 6.3epss 0.00

    GeoNode versions 4.0 before 4.4.5 and 5.0 before 5.0.2 contain a server-side request forgery vulnerability that allows authenticated users with document upload permissions to trigger arbitrary outbound HTTP requests by providing a malicious URL via the doc_url parameter during…

  • CVE-2026-5803MedApr 8, 2026
    risk 0.34cvss 6.3epss 0.00

    A security flaw has been discovered in bigsk1 openai-realtime-ui up to 188ccde27fdf3d8fab8da81f3893468f53b2797c. The affected element is an unknown function of the file server.js of the component API Proxy Endpoint. Performing a manipulation of the argument Query results in…

  • CVE-2026-33458MedApr 8, 2026
    risk 0.34cvss 6.3epss 0.00

    Server-Side Request Forgery (CWE-918) in Kibana One Workflow can lead to information disclosure. An authenticated user with workflow creation and execution privileges can bypass host allowlist restrictions in the Workflows Execution Engine, potentially exposing sensitive…

  • CVE-2026-32591MedApr 8, 2026
    risk 0.34cvss 5.2epss 0.00

    A flaw was found in Red Hat Quay's Proxy Cache configuration feature. When an organization administrator configures an upstream registry for proxy caching, Quay makes a network connection to the specified registry hostname without verifying that it points to a legitimate…

  • CVE-2026-27759MedFeb 27, 2026
    risk 0.34cvss epss 0.00

    Featured Image from Content (featured-image-from-content) WordPress plugin versions prior to 1.7 contain an authenticated server-side request forgery vulnerability that allows Author-level users to fetch internal HTTP resources. Attackers can exploit insecure URL fetching and…

  • CVE-2026-2531MedFeb 16, 2026
    risk 0.34cvss 6.3epss 0.00

    A security vulnerability has been detected in MindsDB up to 25.14.1. This vulnerability affects the function clear_filename of the file mindsdb/utilities/security.py of the component File Upload. Such manipulation leads to server-side request forgery. The attack may be performed…

  • CVE-2019-25290MedJan 8, 2026
    risk 0.34cvss 5.3epss 0.00

    Smartliving SmartLAN/G/SI <=6.x contains an unauthenticated server-side request forgery vulnerability in the GetImage functionality through the 'host' parameter. Attackers can exploit the onvif.cgi endpoint by specifying external domains to bypass firewalls and perform network…

  • CVE-2025-13796MedDec 1, 2025
    risk 0.34cvss 6.3epss 0.00

    A security vulnerability has been detected in deco-cx apps up to 0.120.1. Affected by this vulnerability is the function AnalyticsScript of the file website/loaders/analyticsScript.ts of the component Parameter Handler. Such manipulation of the argument url leads to server-side…

  • CVE-2025-13588MedNov 24, 2025
    risk 0.34cvss 6.3epss 0.00

    A vulnerability was found in lKinderBueno Streamity Xtream IPTV Player up to 2.8. The impacted element is an unknown function of the file public/proxy.php. Performing manipulation results in server-side request forgery. The attack can be initiated remotely. The exploit has been…

  • CVE-2025-10453MedSep 15, 2025
    risk 0.34cvss 5.3epss 0.00

    O'View MapServer developed by PilotGaea Technologies has a Server-Side Request Forgery vulnerability, allowing unauthenticated remote attackers to exploit this vulnerability to probe internal network.

  • CVE-2025-10096MedSep 8, 2025
    risk 0.34cvss 6.3epss 0.00

    A vulnerability was determined in SimStudioAI sim up to 1.0.0. This affects an unknown function of the file apps/sim/app/api/files/parse/route.ts. Executing manipulation of the argument filePath can lead to server-side request forgery. The attack can be executed remotely. The…

  • CVE-2025-57818MedAug 26, 2025
    risk 0.34cvss 6.3epss 0.00

    Firecrawl turns entire websites into LLM-ready markdown or structured data. Prior to version 2.0.1, a server-side request forgery (SSRF) vulnerability was discovered in Firecrawl's webhook functionality. Authenticated users could configure a webhook to an internal URL and send…