Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2025/05/22 10:48 p.m.7 views

CVE-2022-30049

A Server-Side Request Forgery SSRF in Rebuild v2.8.3 allows attackers to obtain the real IP address and scan Intranet information via the fileurl parameter...

7.5CVSS6.6AI score0.00967EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 7:50 a.m.8 views

CVE-2019-10686

An SSRF vulnerability was found in an API from Ctrip Apollo through 1.4.0-SNAPSHOT. An attacker may use it to do an intranet port scan or raise a GET request via /system-info/health because the %23 substring is mishandled...

10CVSS6.8AI score0.01559EPSS
Exploits0References1
Huntr
Huntradded 2023/08/10 6:38 p.m.41 views

SSRF Blind in the image upload module via url

Description Web application with the function of uploading images through a link provided by the user . This access error leads to RCE and scanning of intranet ports Proof of Concept Link video Poc https://drive.google.com/file/d/17fksa8odZAqCuqRQbOCutc9I7eoNun-/view?usp=sharing Steps 1 . Use a...

5.5CVSS6.9AI score0.00349EPSS
Exploits1
CNNVD
CNNVDadded 2021/08/02 12:0 a.m.5 views

WordPress Plugin RSVPMaker 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability exists i...

4CVSS5.2AI score0.01012EPSS
Exploits2References3
CNVD
CNVDadded 2020/04/23 12:0 a.m.3 views

SSRF vulnerability in weiphp5.0 API.php page

WeiPHP is an open source WeChat public platform development framework, can easily build a personal WeChat public account operation platform. SSRF vulnerability exists in the weiphp5.0 API.php page, which can be exploited to read any local file, perform intranet port scanning, intranet web...

6.6AI score
Exploits0
AlpineLinux
AlpineLinuxadded 2019/04/01 4:21 p.m.1 views

CVE-2019-10686

An SSRF vulnerability was found in an API from Ctrip Apollo through 1.4.0-SNAPSHOT. An attacker may use it to do an intranet port scan or raise a GET request via /system-info/health because the %23 substring is mishandled...

10CVSS9.4AI score0.01559EPSS
Exploits0References1
Hacker One
Hacker Oneadded 2018/01/03 9:23 a.m.106 views

GitLab: SSRF vulnerability in gitlab.com webhook

1、 Login to your GitLab account and create a new project, then go to--https://gitlab.com/username/project/settings/integrations 2、 You can add url to ssrf.following are the steps to reproduce: If you enter http://127.0.0.1:80/haha.txt as url,we will get --Hook executed successfully but returned...

6.9AI score
Exploits0
CNVD
CNVDadded 2016/06/30 12:0 a.m.4 views

Symantec Endpoint Protection Manager and Client Server-Side Request Forgery Vulnerability

Symantec Endpoint Protection SEP is the United States Symantec Symantec company's set of antivirus software the software can provide security across physical and virtual systems SEP Manager and Client is one of the management and client software. A server-side request forgery vulnerability exists...

7.7CVSS6.7AI score0.01851EPSS
Exploits0References1
Rows per page
Query Builder