CWE-918

Server-Side Request Forgery (SSRF)

Parent: CWE-441 - Unintended Proxy or Intermediary ('Confused Deputy')

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.

2,681 vulnerabilities with CWE-918
CVE-2026-35629 HIGH
OpenClaw < 2026.3.25 - Server-Side Request Forgery via Unguarded Configured Base URLs in Channel Extensions
CVSS 7.4
CVE-2026-40107 MEDIUM
SiYuan Affected by Zero-Click NTLM Hash Theft and Blind SSRF via Mermaid Diagram Rendering
CVSS 6.5
CVE-2026-40089 CRITICAL
Sonicverse has Server-Side Request Forgery via user-controlled URLs in dashboard API client
CVSS 9.9
CVE-2026-40072 HIGH
web3.py affected by SSRF via CCIP Read (EIP-3668) OffchainLookup URL handling
CVSS 7.2
CVE-2026-39974 HIGH
n8n-MCP <2.47.4 instance-URL Header - Server-Side Request Forgery
CVSS 8.5
CVE-2026-39843 HIGH
Plane 0.28.0-1.2.x Favicon Fetching - Server-Side Request Forgery
CVSS 7.7
CVE-2026-5832 HIGH
atototo api-lab-mcp HTTP http-server.ts test_http_endpoint server-side request forgery
CVSS 7.3
CVE-2026-5803 MEDIUM
bigsk1 openai-realtime-ui API Proxy Endpoint server.js server-side request forgery
CVSS 6.3
CVE-2026-39885 HIGH
FrontMCP Affected by SSRF via $ref Dereferencing in Untrusted OpenAPI Specifications
CVSS 7.5
CVE-2026-39362 HIGH
InvenTree has SSRF via Remote Image Download — No IP/Hostname Validation on remote_image URLs
CVSS 7.1
CVE-2026-34719 MEDIUM
Zammad Webhooks - Server-Side Request Forgery
CVSS 4.3
CVE-2026-33458 MEDIUM
Server-Side Request Forgery (SSRF) in Kibana One Workflow Leading to Information Disclosure
CVSS 6.3
CVE-2026-32591 MEDIUM
Mirror-registry: quay: server-side request forgery in proxy cache upstream registry configuration
CVSS 5.2
CVE-2026-31017 CRITICAL
ERPNext 16.0.1 & Frappe Framework 16.1.1 - SSRF
CVSS 9.1
CVE-2026-2377 MEDIUM
Mirror-registry: quay: quay: server-side request forgery via log export functionality
CVSS 6.5
CVE-2026-39695 MEDIUM
WordPress Podigee plugin <= 1.4.0 - Server Side Request Forgery (SSRF) vulnerability
CVSS 5.4
CVE-2026-39670 MEDIUM
WordPress Visual Link Preview plugin <= 2.3.0 - Server Side Request Forgery (SSRF) vulnerability
CVSS 6.0
CVE-2026-39647 MEDIUM
WordPress MP3 Audio Player for Music, Radio & Podcast by Sonaar plugin <= 5.11 - Server Side Request Forgery (SSRF) vulnerability
CVSS 5.4
CVE-2026-39645 MEDIUM
WordPress GlobalPayments WooCommerce plugin <= 1.18.0 - Server Side Request Forgery (SSRF) vulnerability
CVSS 5.4
CVE-2026-39630 MEDIUM
WordPress Getty Images plugin <= 4.1.0 - Server Side Request Forgery (SSRF) vulnerability
CVSS 6.4
CVE-2026-39521 MEDIUM
WordPress Nelio Content plugin <= 4.3.1 - Server Side Request Forgery (SSRF) vulnerability
CVSS 4.9
CVE-2026-39464 MEDIUM
WordPress Coming Soon Page, Under Construction & Maintenance Mode by SeedProd plugin <= 6.19.8 - Server Side Request Forgery (SSRF) vulnerability
CVSS 5.5
CVE-2026-1343 HIGH
Security Vulnerabilities have been found in IBM Verify Identity Access and IBM Security Verify Access
CVSS 7.2
CVE-2026-39370 HIGH
WWBN AVideo <= 26.0 - Server-Side Request Forgery Response Exfiltration
CVSS 7.1
CVE-2026-39368 MEDIUM
AVideo <=26.0 Live Restream Callback - Stored Server-Side Request Forgery
CVSS 6.5
Details
Vulnerabilities 2,681
Links
MITRE CWE Entry Search this CWE With Exploits