Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 531— Search: SSRF×

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Clear
Examples: RCE · SSRF · GHSA · log4j
Filter
CVSS 6.3
SSRF Vulnerability in google-search-api Library (CVSS 8.8)
github.com · 2026-04-04

This request asks me to summarize a webpage screenshot regarding a "Google Search Server-Side Request Forgery (SSRF) Vulnerability." **1. Vulnerability Overview:** * **Title:** Server-Side Request For…

Read more
CVSS 7.3
Unauthenticated SSRF in GPT Researcher WebSocket (CVSS 9.1) with POC
github.com · 2026-04-06

### Vulnerability Overview * **Vulnerability Name**: Unauthenticated WebSocket Source URL SSRF Vulnerability (Unauthenticated SSRF via WebSocket source_urls) * **Affected Product**: GPT Researcher * *…

Read more
Premium intel
CVSS 8.3
OpenHarness Path Traversal and SSRF Vulnerability Fix Analysis
github.com · 2026-04-18

# Vulnerability Summary ## Vulnerability Overview This commit fixes vulnerabilities related to Path Traversal and Web Guards in the OpenHarness project. The main issue lies in insufficient permission …

Read more
CVSS 8.6
Chamilo PensProcessor SSRF Fix: Strict Private IP Validation
github.com · 2026-04-18

# Vulnerability Summary ## Overview This vulnerability involves **insufficiently strict URL validation logic**, which may allow access to private/reserved address ranges (such as internal network addr…

Read more
CVSS 6.8
ProcessWire CMS Admin SSRF Vulnerability Analysis
gist.github.com · 2026-04-18

# ProcessWire CMS SSRF Vulnerability Summary ## Vulnerability Overview A **Server-Side Request Forgery (SSRF)** vulnerability exists in the admin panel of ProcessWire CMS (v3.0.255). The flaw is locat…

Read more
CVSS 8.5
n8n-mcp SSRF bypass via IPv4-mapped IPv6 addresses (CVE-2025-42449)
github.com · 2026-05-08

# Vulnerability Summary: IPv4-mapped IPv6 addresses bypass SSRF protection in validateUrlSync() ## Vulnerability Overview - **Vulnerability Name**: IPv4-mapped IPv6 addresses bypass SSRF protection in…

Read more
CVSS 4.3
CVE-2026-41687: SSRF CGNAT Bypass in wallios via is_cgnat_ip() Omission
github.com · 2026-05-07

# SSRF CGNAT Bypass in subscription/payments Logo URL — is_cgnat_ip() Not Used in Inline Checks (CWE-918) ## Vulnerability Overview - **Vulnerability Type**: CWE-918 Server-Side Request Forgery (SSRF)…

Read more
cors-anywhere SSRF CVE-2020-36851: No blocking of RFC 1918 or Cloud IDMS
github.com · 2025-09-27

### Critical Vulnerability Information #### Vulnerability Title Full SSRF: Proxy Does Not Block RFC 1918 IP Ranges nor Cloud IDMS #### Severity Critical (9.5/10) #### Affected Packages and Versions - …

Read more
fix(browser): unblock loopback CDP readiness under strict SSRF defaul… · openclaw/openclaw@7eecfa4 · GitHub
github.com · 2026-05-05

# Vulnerability Summary ## Vulnerability Overview This vulnerability involves the failure of OpenClaw's loopback CDP (Chrome DevTools Protocol) readiness check under the default strict SSRF (Server-Si…

Read more
Lightdash SSRF Vulnerability (CVE-2024-6586) Leads to Session Takeover
www.cve.org · 2024-09-01

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability ID**: CVE-2024-6586 2. **Release Date**: 2024-08-30 3. **Update Date**: 2024-08-…

Read more
Lightdash SSRF Session Takeover via Dashboard Export
github.com · 2024-09-01

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Name**: Lightdash - Server-Side Request Forgery Session Takeover 2. **Vulnerabil…

Read more
Premium intel
CVSS 9.3
DNS Rebinding Bypass SSRF Protection Vulnerability Analysis
github.com · 2024-09-07

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Description**: - **Vulnerability Name**: Bypass SSRF Protection with DNS Rebindi…

Read more
CVSS 9.0
LobeChat SSRF Bypass via Redirect (CVE-2024-32964)
github.com · 2024-09-24

From this webpage screenshot, the following key vulnerability information can be obtained: 1. **Vulnerability ID**: CVE-2024-32964 2. **Vulnerability Name**: Insufficient fix for GHSA-mxhq-xw3g-rphc 3…

Read more
Premium intel
CVSS 9.1
Sharp/Toshiba MFP Vulnerability Advisory: Auth Bypass, OOB Read, SSRF
jvn.jp · 2024-10-26

### Key Information 1. **Affected Products**: - Multifunction Printers (MFPs) provided by Sharp and Toshiba Tec Corporation, containing multiple vulnerabilities. 2. **Vulnerability Descriptions**: - *…

Read more
SSRF Analysis: fileUrl Parameter Bypass in /api/data/upload API Endpoint
github.com · 2024-11-03

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Type**: SSRF (Server-Side Request Forgery) vulnerability. 2. **Affected Path**: …

Read more
CVSS 7.5
2FAuth CVE-2024-52598 SSRF via URI Validation Bypass
github.com · 2024-11-24

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Description**: - **Vulnerability Type**: SSRF + URI validation bypass - **Affect…

Read more
CVSS 7.4
SSRF Mitigation: URL Validation Fix Blocking Private IP Access
github.com · 2025-05-30

From this webpage screenshot, the following key vulnerability-related information can be obtained: - **Commit Information**: This is a commit named `0284aa8`, created by `zcaceres` 3 weeks ago. The co…

Read more
CVE-2025-57814: SSRF Bypass in request-filtering-agent via HTTPS to 127.0.0.1
github.com · 2025-08-27

### Key Information #### Vulnerability Overview - **Vulnerability Type**: SSRF Bypass via HTTPS Requests to 127.0.0.1 - **Affected Versions**: <2.0.0 - **Fixed Version**: 2.0.0 - **Severity**: High - …

Read more
request-filtering-agent SSRF: HTTPS bypasses 127.0.0.1 IP filtering
github.com · 2025-08-27

### Key Information #### Vulnerability Description - **Vulnerability Name**: request-filtering-agent 127.0.0.1 Vulnerability Test - **Affected Version**: v1.1.2 - **Fixed Version**: v2+ #### Issue Des…

Read more
CVSS 6.3
SSRF Vulnerability POC: Cloud Metadata Access and Internal Network Exploitation
github.com · 2025-09-03

### Key Information #### Vulnerability Type - SSRF (Server-Side Request Forgery) #### Impact - Read cloud metadata to obtain credentials, potentially leading to takeover of cloud infrastructure. - Acc…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.