@cosla/sensemaking-web-ui (>=1.0.5 <=1.0.8), @manniwatch/client-desktop (>=0.30.0 <=0.30.1) +3 more potentially affected by CVE-2026-27739 via @angular/ssr (>=19.0.5 <=19.2.19)

@angular/ssr NPM version =19.0.5, =1.0.5, =0.30.0, =0.30.0, =19.0.0-alpha.20, =19.0.0-alpha.20, =19.0.0-alpha.24 Source cves: CVE-2026-27739 Source advisory: SNYK:JS-ANGULARSSR-15357314...

EUVD-2019-9432

Malware in sbrugna...

EUVD-2018-1856

Malware in sbrugna...

PT-2025-31002 · Chancms · Chancms

Name of the Vulnerable Software and Affected Versions: ChanCMS versions up to 3.1.2 Description: A critical server-side request forgery SSRF vulnerability exists in the getPages function of the /cms/collect/getPages file. Manipulation of the targetUrl argument can lead to unauthorized access to...

Server side request forgery (ssrf)

Server-side request forgery SSR vulnerability in the WP Smart Import wp-smart-import plugin 1.0.0 for WordPress via the file field...

CVE-2020-24147

The CVE-2020-24147 entry describes a Server-Side Request Forgery (SSRF) in the WordPress WP Smart Import plugin, version 1.0.0, exploitable via the file field. The issue is documented as affecting WP Smart Import 1.0.0 and is mitigated by upgrading to a newer version (e.g., 1.0.1+), per multiple ...

Security Bulletin: Vulnerability in Apache Batik affects WebSphere Application Server (CVE-2019-17566)

Summary There is a server-side request forgery vulnerability in the Apache Batik library which is used by WebSphere Application Server. This has been addressed. Vulnerability Details CVEID: CVE-2019-17566 DESCRIPTION: Apache Batik is vulnerable to server-side request forgery, caused by improper...