UBUNTU-CVE-2024-42365

Asterisk is an open source private branch exchange PBX and telephony toolkit. Prior to asterisk versions 18.24.2, 20.9.2, and 21.4.2 and certified-asterisk versions 18.9-cert11 and 20.7-cert2, an AMI user with write=originate may change all configuration files in the /etc/asterisk/ directory. Thi...

WordPress Remote Content Shortcode plugin <= 1.5 - Authenticated (Contributor+) Server-Side Request Forgery vulnerability

Authenticated Contributor+ Server-Side Request Forgery vulnerability discovered by Francesco Carlucci in WordPress Plugin Remote Content Shortcode versions = 1.5...

PT-2024-38018 · Bitdefender · Gravityzone Console

Name of the Vulnerable Software and Affected Versions: GravityZone Console versions prior to 6.38.1-5 Description: A verbose error handling issue in the proxy service implemented in the GravityZone Update Server allows an attacker to cause a server-side request forgery. This issue only affects...

The vulnerability of the mod_rewrite module in the Apache HTTP Server allows a hacker to perform an SSRF attack.

The vulnerability of the modrewrite module in the Apache HTTP Server is related to insufficient checking of incoming requests. Exploiting this vulnerability allows a malicious actor to perform an SSRF attack remotely...

WordPress WappPress plugin <= 6.0.4 - Blind Server Side Request Forgery (SSRF) vulnerability

Blind Server Side Request Forgery SSRF vulnerability discovered by Majed Refaea Patchstack Alliance in WordPress Plugin WappPress versions = 6.0.4...

DEBIAN-CVE-2024-39573

Potential SSRF in modrewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to cause unsafe RewriteRules to unexpectedly setup URL's to be handled by modproxy. Users are recommended to upgrade to version 2.4.60, which fixes this issue...

ALPINE-CVE-2024-38472

SSRF in Apache HTTP Server on Windows allows to potentially leak NTLM hashes to a malicious server via SSRF and malicious requests or content Users are recommended to upgrade to version 2.4.60 which fixes this issue. Note: Existing configurations that access UNC paths will have to configure new...

Apache HTTP Server 安全漏洞

Apache HTTP Server is the United States Apache Apache Foundation of an open source web server . The server is fast, reliable and can be expanded through a simple API. An information disclosure vulnerability exists in Apache HTTP Server, which can be exploited by an attacker to obtain sensitive...

DEBIAN-CVE-2023-45195

Adminer and AdminerEvo are vulnerable to SSRF via database connection fields. This could allow an unauthenticated remote attacker to enumerate or access systems the attacker would not otherwise have access to. Adminer is no longer supported, but this issue was fixed in AdminerEvo version 4.8.4...

The vulnerability in the web interface for controlling the automation software of Cisco Finesse’s operator functions allows a hacker to perform an SSRF attack.

The vulnerability in the web interface for controlling the automation software of Cisco Finesse operators is related to insufficient checking of incoming requests. Exploiting this vulnerability allows a malicious actor to execute an SSRF attack using a specially created HTTP request...

PT-2024-4048

Name of the Vulnerable Software and Affected Versions Cisco Finesse affected versions not specified Description A flaw exists in the web-based management interface of Cisco Finesse that could allow a remote, unauthenticated attacker to perform a Server-Side Request Forgery SSRF attack. This issue...

UBUNTU-CVE-2024-29415

The ip package through 2.0.1 for Node.js might allow SSRF because some IP addresses such as 127.1, 01200034567, 012.1.2.3, 000:0:0000::01, and ::fFFf:127.0.0.1 are improperly categorized as globally routable via isPublic. NOTE: this issue exists because of an incomplete fix for CVE-2023-42282...

Spring Framework URL Parsing with Host Validation (CVE-2024-22243)

Applications that useUriComponentsBuilderto parse an externally provided URL e.g. through a query parameterAND perform validation checks on the host of the parsed URL may be vulnerable to a open redirect attack or to a SSRF attack if the URL is used after passing validation checks. More at:...

CVE-2024-30420

Server-side request forgery SSRF vulnerability exists in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.12 and Ver.3.0.x series versions prior to Ver.3.0.32. If this vulnerability is exploited, a user with an administrator or higher privilege who can log in to the product may obtain...

The vulnerability of the download_file_stream() function (backend/apps/web/routers/utils.py) in the AI-based web interface Open WebUI (previously Ollama WebUI) allows a attacker to perform an SSRF attack.

The vulnerability of the downloadfilestream function located in backend/apps/web/routers/utils.py of the Open WebUI formerly Ollama WebUI AI-based web interface is related to the manipulation of requests on the server-side during the processing of the url parameter. Exploiting this vulnerability...

ITPison OMICARD EDM 代码问题漏洞

ITPison OMICARD EDM is a high-speed newsletter EDM marketing and distribution system from China-based ITPison. A code issue vulnerability exists in ITPison OMICARD EDM versions prior to v6.0 that stems from the inability to properly filter specific URL parameters, which allows an unauthenticated,...

PT-2024-15245 · Opentext · Netiq Identity Console

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: An improper authorization level has been detected in the login panel, which may lead to unauthenticated Server Side Request Forgery. This allows for ope...

PT-2024-25361 · Unknown · Softlab Radio Player

Name of the Vulnerable Software and Affected Versions: SoftLab Radio Player versions 2.0.73 and earlier Description: The issue is a Server-Side Request Forgery SSRF vulnerability. This means that an attacker could potentially force the server to make requests to arbitrary domains, which could lea...

Judge0 CE 安全漏洞

Judge0 CE is an open source online code execution system from Judge0 Open Source. A security vulnerability exists in Judge0 CE versions prior to 1.13.1. The vulnerability stems from a security issue in the default configuration, which leads to a server-side request forgery that can be exploited b...

WordPress ActiveCampaign plugin <= 8.1.14 - Server Side Request Forgery (SSRF) vulnerability

Server Side Request Forgery SSRF vulnerability discovered by Yuchen Ji Patchstack Alliance in WordPress Plugin ActiveCampaign versions = 8.1.14...