CVE Database

5+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS

5 results for "CWE-918"

CVE-2025-54925
7.5 HIGH

CWE-918: Server-Side Request Forgery (SSRF) vulnerability exists that could cause unauthorized access to sensitive data when an attacker configures the application to access a malicious …

Aug 20, 2025
CVE-2025-54924
7.5 HIGH

CWE-918: Server-Side Request Forgery (SSRF) vulnerability exists that could cause unauthorized access to sensitive data when an attacker sends a specially crafted document to a …

Aug 20, 2025
CVE-2025-46385
8.6 HIGH

CWE-918 Server-Side Request Forgery (SSRF)

Jul 20, 2025
CVE-2024-37359
8.6 HIGH

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently …

Feb 19, 2025
CVE-2024-27775
7.2 HIGH

SysAid before version 23.2.14 b18 - CWE-918: Server-Side Request Forgery (SSRF) may allow exposing the local OS user's NTLMv2 hash

Mar 28, 2024

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.

Website Scanner Port Scanner