WordPress Beaf Plugin <= 1.6.2 - Server Side Request Forgery (SSRF) Vulnerability

Server Side Request Forgery SSRF Vulnerability discovered by Nabil Irawan in WordPress Plugin Beaf versions = 1.6.2...

CVE-2025-9960

A restriction bypass vulnerability in is-localhost-ip could allow attackers to perform Server-Side Request Forgery SSRF. This issue affects is-localhost-ip: 2.0.0...

CVE-2025-58962

Server-Side Request Forgery SSRF vulnerability in publitio Publitio publitio allows Server Side Request Forgery.This issue affects Publitio: from n/a through = 2.2.1...

CVE-2025-58011

Server-Side Request Forgery SSRF vulnerability in Alex Content Mask content-mask allows Server Side Request Forgery.This issue affects Content Mask: from n/a through = 1.8.5.2...

CVE-2025-57984

Server-Side Request Forgery SSRF vulnerability in Pratik Ghela MakeStories for Google Web Stories makestories-helper allows Server Side Request Forgery.This issue affects MakeStories for Google Web Stories: from n/a through = 3.0.4...

WordPress Skimlinks Affiliate Marketing Tool plugin <= 1.3.1 - Server Side Request Forgery (SSRF) vulnerability

Server Side Request Forgery SSRF vulnerability discovered by Nabil Irawan in WordPress Plugin Skimlinks Affiliate Marketing Tool versions = 1.3.1...

WordPress MakeStories (for Google Web Stories) Plugin <= 3.0.4 - Server Side Request Forgery (SSRF) Vulnerability

Server Side Request Forgery SSRF Vulnerability discovered by Nabil Irawan in WordPress Plugin MakeStories for Google Web Stories versions = 3.0.4...

WordPress DriCub Theme <= 2.9 - Server Side Request Forgery (SSRF) Vulnerability

Server Side Request Forgery SSRF Vulnerability discovered by Bonds in WordPress Theme DriCub versions = 2.9...

WordPress Content Mask plugin <= 1.8.5.2 - Server Side Request Forgery (SSRF) vulnerability

Server Side Request Forgery SSRF vulnerability discovered by Nabil Irawan in WordPress Plugin Content Mask versions = 1.8.5.2...

CVE-2025-9960 is-localhost-ip 2.0.0 - SSRF via Restrictions bypass

A restriction bypass vulnerability in is-localhost-ip could allow attackers to perform Server-Side Request Forgery SSRF. This issue affects is-localhost-ip: 2.0.0...

WordPress Publitio Plugin <= 2.2.1 - Server Side Request Forgery (SSRF) Vulnerability

Server Side Request Forgery SSRF Vulnerability discovered by muhammad yudha in WordPress Plugin Publitio versions = 2.2.1...

CVE-2025-58962 WordPress Publitio Plugin <= 2.2.1 - Server Side Request Forgery (SSRF) Vulnerability

Server-Side Request Forgery SSRF vulnerability in publitio Publitio publitio allows Server Side Request Forgery.This issue affects Publitio: from n/a through = 2.2.1...

CVE-2025-58962

CVE-2025-58962 is a Server-Side Request Forgery (SSRF) in the Publitio WordPress plugin. Connected documentation confirms the affected software: Publitio, with impact stated up to version 2.2.1, and indicates a patched status (the entry shows Patch Status: Patched). The CVSS metrics provided by t...

CVE-2025-53457 WordPress SEO Backlink Monitor plugin <= 1.8.0 - Server Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery SSRF vulnerability in activewebsight SEO Backlink Monitor seo-backlink-monitor allows Server Side Request Forgery.This issue affects SEO Backlink Monitor: from n/a through = 1.8.0...

CVE-2025-53457

CVE-2025-53457 is a Server-Side Request Forgery in the WordPress plugin SEO Backlink Monitor affecting versions

CVE-2025-53461

CVE-2025-53461 is a Server-Side Request Forgery (SSRF) vulnerability in Beaf (Beaf – Photo Comparison Block) affecting Beaf versions up to 1.6.2. The Beaf entry (Beaf

CVE-2025-57984 WordPress MakeStories (for Google Web Stories) Plugin <= 3.0.4 - Server Side Request Forgery (SSRF) Vulnerability

Server-Side Request Forgery SSRF vulnerability in Pratik Ghela MakeStories for Google Web Stories allows Server Side Request Forgery. This issue affects MakeStories for Google Web Stories: from n/a through 3.0.4...

CVE-2025-36037

IBM webMethods Integration 10.15 and 11.1 is vulnerable to server-side request forgery SSRF. This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks...

CVE-2025-36037

IBM webMethods Integration Server (on‑prem) versions 10.15 and 11.1 are affected by a server‑side request forgery (SSRF) vulnerability (CVE-2025-36037). The issue allows an authenticated attacker to cause unauthorized requests from the server, potentially enabling network enumeration. Remediation...

CVE-2025-10787

A vulnerability was found in MuYuCMS up to 2.7. Impacted is an unknown function of the file /index/index.html of the component Add Fiend Link Handler. Performing manipulation of the argument Link URL results in server-side request forgery. The attack may be initiated remotely. The exploit has bee...