Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2 days ago5 views

CVE-2026-31941

Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, Chamilo LMS contains a Server-Side Request Forgery SSRF vulnerability in the Social Wall feature. The endpoint readurlwithopengraph accepts a URL from the user via the socialwallnewmsgmain POST parameter and performs tw...

7.7CVSS5.6AI score0.00036EPSS
Exploits0References1
NVD
NVDadded 2026/04/10 6:16 p.m.0 views

CVE-2026-31941

Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, Chamilo LMS contains a Server-Side Request Forgery SSRF vulnerability in the Social Wall feature. The endpoint readurlwithopengraph accepts a URL from the user via the socialwallnewmsgmain POST parameter and performs tw...

7.7CVSS0.00036EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2026/04/10 5:37 p.m.3 views

CVE-2026-31941 Server-Side Request Forgery (SSRF) in Chamilo LMS

Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, Chamilo LMS contains a Server-Side Request Forgery SSRF vulnerability in the Social Wall feature. The endpoint readurlwithopengraph accepts a URL from the user via the socialwallnewmsgmain POST parameter and performs tw...

7.7CVSS5.9AI score0.00036EPSS
Exploits0References3
CVE
CVEadded 2026/04/10 5:37 p.m.6 views

CVE-2026-31941

Chamilo LMS prior to versions 1.11.38 and 2.0.0-RC.3 is affected by a Server-Side Request Forgery (SSRF) in the Social Wall feature. The read_url_with_open_graph endpoint accepts a user-supplied URL via the social_wall_new_msg_main POST parameter and performs two server-side HTTP requests without...

7.7CVSS5.9AI score0.00036EPSS
Exploits0References3Affected Software1
Prion
Prionadded 2022/03/15 5:15 p.m.13 views

Information disclosure

A missing permission check in Jenkins Extended Choice Parameter Plugin 346.vd87693c5a86c and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL...

4CVSS4.4AI score0.00031EPSS
Exploits0References2Affected Software1
OSV
OSVadded 2018/04/20 9:29 p.m.1 views

CVE-2018-10174

Digital Guardian Management Console 7.1.2.0015 has an SSRF issue that allows remote attackers to read arbitrary files via file:// URLs, send TCP traffic to intranet hosts, or obtain an NTLM hash. This can occur even if the logged-in user has a read-only role...

6.5CVSS5.9AI score0.00178EPSS
Exploits2References1
CNVD
CNVDadded 2018/02/02 12:0 a.m.11 views

Citrix NetScaler VPX Server-Side Request Forgery Vulnerability

NetScaler VPX provides complete NetScaler Web and application load balancing, security and remote access, acceleration, security and offloading capabilities in a simple, easy-to-install virtual appliance. A server-side request forgery vulnerability exists in Citrix NetScaler VPX. An authenticated...

9CVSS7.6AI score0.01334EPSS
Exploits0References1
OSV
OSVadded 2018/02/01 2:29 p.m.3 views

CVE-2018-6186

Citrix NetScaler VPX through NS12.0 53.13.nc allows an SSRF attack via the /rapi/readurl URI by an authenticated attacker who has a webapp account. The attacker can gain access to the nsroot account, and execute remote commands with root privileges...

8.8CVSS5.9AI score
Exploits0References4
Rows per page
Query Builder