Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-918

CWE-918

Server-Side Request Forgery (SSRF)

Parent: CWE-441 - Unintended Proxy or Intermediary ('Confused Deputy')

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.

2,681 vulnerabilities with CWE-918

CVE-2026-32186 CRITICAL

Microsoft Bing Elevation of Privilege Vulnerability

CVE-2026-5470 MEDIUM

mixelpixx Google-Research-MCP Model Context Protocol content-extractor.service.ts extractContent server-side request forgery

CVE-2026-31818 CRITICAL

Budibase: Server-Side Request Forgery via REST Connector with Empty Default Blacklist

CVE-2026-5469 MEDIUM

Casdoor Webhook URL server-side request forgery

CVE-2026-33107 CRITICAL

Azure Databricks Elevation of Privilege Vulnerability

CVE-2026-26135 CRITICAL

Azure Custom Locations Resource Provider (RP) Elevation of Privilege Vulnerability

CVE-2026-5418 HIGH

appsmithorg appsmith Dashboard WebClientUtils.java computeDisallowedHosts server-side request forgery

CVE-2026-5417 MEDIUM

Dataease SQLbot Elasticsearch es_engine.py get_es_data_by_http server-side request forgery

CVE-2026-34590 MEDIUM

Postiz: SSRF via Webhook Creation Endpoint Missing URL Safety Validation

CVE-2026-34577 HIGH

Postiz: Unauthenticated Full-Read SSRF via /public/stream Endpoint with Trivially Bypassable Extension Check

CVE-2026-34576 HIGH

Postiz: SSRF in upload-from-url endpoint allows fetching internal resources and cloud metadata

CVE-2026-34526 MEDIUM

SillyTavern: Incomplete IP validation in /api/search/visit allows SSRF via localhost and IPv6

CVE-2026-5346 HIGH

huimeicloud hm_editor image-to-base64 Endpoint mcp-server.js client.get server-side request forgery

CVE-2026-32871 CRITICAL

FastMCP <3.2.0 OpenAPIProvider - Server-Side Request Forgery

CVE-2026-0688 MEDIUM

Webmention <= 5.6.2 - Authenticated (Subscriber+) Server-Side Request Forgery

CVE-2026-0686 HIGH

Webmention <= 5.6.2 - Unauthenticated Blind Server-Side Request Forgery

CVE-2026-5323 MEDIUM

priyankark a11y-mcp index.js A11yServer server-side request forgery

CVE-2026-34515 HIGH

AIOHTTP: UNC SSRF/NTLMv2 Credential Theft/Local File Read in static resource handler on Windows

CVE-2026-34746 HIGH

Payload has Authenticated SSRF via Upload Functionality

CVE-2026-34076 HIGH

Clerk JavaScript: SSRF in the opt-in clerkFrontendApiProxy feature may leak secret keys to unintended host

CVE-2026-33990 CRITICAL

Docker Model Runner OCI Registry Client Vulnerable to Server-Side Request Forgery (SSRF)

CVE-2026-20041 MEDIUM

Cisco Nexus Dashboard Server Side Request Forgery Vulnerability

CVE-2026-4989 MEDIUM

Devolutions Server 2025.3.1-2025.3.17 & 2026.1.1-2026.1.11 SSRF via Gateway Health Check API

CVE-2026-0932 HIGH

M-Files Server < 26.3 - Unauthenticated Blind Server-Side Request Forgery via Legacy Co-Authoring Connection

CVE-2026-5259 MEDIUM

AutohomeCorp frostmourne Alarm Preview AlarmController.java server-side request forgery

Previous Page 17 of 108 Next

Details

Vulnerabilities 2,681

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy