Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 531— Search: SSRF×

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Clear
Examples: RCE · SSRF · GHSA · log4j
Filter
CVSS 7.7
PhpSpreadsheet XLSX SSRF and Absolute Path Traversal via php://filter (GHSA-5gpr-w2p5-6m37)
github.com · 2024-10-09

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Description**: - **Vulnerability Name**: Absolute path traversal and Server-Side…

Read more
Apache Batik/FOP/XML Graphics Commons SSRF/XXE/Deserialization Vulnerabilities Summary (CVE-2022-44729 etc.)
xmlgraphics.apache.org · 2024-10-10

From this webpage screenshot, the following key information about vulnerabilities can be obtained: 1. **Apache Batik Project - Apache Batik Security**: - Batik 1.17: SSRF vulnerability CVE-2022-44729 …

Read more
CVSS 7.5
Ivanti Avalanche 6.4.5 Security Advisory: SSRF/Path Traversal Vulnerabilities (CVE-2024-47008/47011/47010)
forums.ivanti.com · 2024-10-10

From this webpage screenshot, the following key vulnerability information can be obtained: 1. **Vulnerability Name**: Ivanti Avalanche 6.4.5 Security Advisory (Multiple CVE's) 2. **Vulnerability Descr…

Read more
CVSS 9.3
Plane SSRF via /_next/image (GHSA-39gx-38xf-c348)
github.com · 2024-10-12

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Description**: - **Title**: Server side request forgery via /_next/image endpoin…

Read more
CVSS 3.7
CVE-2024-6763: Eclipse Jetty HttpURI SSRF via Invalid URI Authority
github.com · 2024-10-16

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Description**: - **Vulnerability Name**: URI parsing of invalid authority - **Pu…

Read more
CVSS 5.9
Next.js Image Optimizer SSRF Fix (#68628)
github.com · 2024-10-16

From this webpage screenshot, we can extract the following key information about the vulnerability: 1. **Vulnerability Description**: - Vulnerability ID: #68628 - Title: `Reject next image urls in ima…

Read more
mipjz 5.0.5 SSRF Vulnerability Analysis
github.com · 2024-10-28

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Description**: - **Product**: mipjz - **Version**: 5.0.5 - **Source Code Link**:…

Read more
CVSS 3.1
Symfony HttpClient SSRF Fix: Enhanced Private IP Filtering in NoPrivateNetworkHttpClient
github.com · 2024-11-09

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Code Changes**: - The code changes occurred in the file `src/Symfony/Component/HttpClient/NoPr…

Read more
CVSS 7.3
CVE-2024-11618 Unigy SSRF Vulnerability Advisory
github.com · 2024-11-24

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Description**: - **Title**: CVE-2024-11618 - **Vulnerability Type**: Server-Side…

Read more
PostHog database_schema SSRF Information Disclosure Vulnerability (CVE-2024-9710)
www.zerodayinitiative.com · 2024-11-24

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Name**: PostHog database_schema Server-Side Request Forgery Information Disclosu…

Read more
CVSS 5.3
OpenShift Console SSRF Vulnerability (CVE-2024-6538)
bugzilla.redhat.com · 2024-11-26

From this webpage screenshot, we can obtain the following key information about the vulnerability: 1. **Vulnerability ID**: CVE-2024-6538 2. **Vulnerability Description**: A Server-Side Request Forger…

Read more
CVSS 5.3
Red Hat OpenShift Console SSRF Vulnerability Advisory (CVE-2024-6538)
access.redhat.com · 2024-11-26

### Key Information #### Vulnerability Description - **CVE Number**: CVE-2024-6538 - **Public Disclosure Date**: November 21, 2024 - **Last Modified Date**: November 21, 2024 - **Impact Level**: Mediu…

Read more
CVSS 6.3
SSRF Vulnerability in mymagicpower/AIAS AIAS
github.com · 2025-04-09

### Critical Vulnerability Information #### Vulnerability Description - **Project Name**: mymagicpower/AIAS - **Vulnerability Type**: SSRF (Server-Side Request Forgery) - **Affected APIs**: - `/api/in…

Read more
CVSS 6.3
AIAS ai_platform SSRF Vulnerability Analysis and POC
github.com · 2025-04-09

### Critical Vulnerability Information #### Vulnerability Description - **Vulnerability Type**: SSRF (Server-Side Request Forgery) - **Affected Systems**: Two APIs in the AIAS subsystem `api_platform`…

Read more
CVSS 6.3
YouKeFu XXE Vulnerability Analysis: File Read & SSRF
github.com · 2025-04-09

From this webpage screenshot, the following key vulnerability information can be extracted: - **Project Name and URL**: - Project Name: YouKeFu (优客服) - Project URL: https://github.com/zhangyanbo2007/y…

Read more
Videx CyberAudit-Web SSRF Vulnerability (CVE-2025-22374)
csirt.divd.nl · 2025-04-11

## Key Information - **CVE ID**: CVE-2025-22374 - **Vulnerability Type**: SSRF (Server-Side Request Forgery) - **Affected Product**: Videx Inc. CyberAudit-Web videx-legacy-ssl - **Affected Versions**:…

Read more
CVSS 4.3
Nextcloud CVE-2025-47791: Unrate-limited endpoint allows SSRF
github.com · 2025-05-17

### Critical Vulnerability Information #### Vulnerability Title - **Test remote endpoint is not rate limited** #### Severity - **Level**: Moderate - **CVSS v3 Base Metrics**: - Attack Vector: Adjacent…

Read more
CVSS 3.3
TYPO3 Webhooks SSRF Vulnerability Advisory (CVE-2025-47936)
typo3.org · 2025-05-22

### Key Information - **Vulnerability ID**: TYPO3-CORE-SA-2025-012 - **Vulnerability Type**: Server-Side Request Forgery (SSRF) via Webhooks - **Affected Versions**: - 12.0.0 - 12.4.30 - 13.0.0 - 13.4…

Read more
CVSS 6.3
JeeSite 5 SSRF and Arbitrary File Read Vulnerability Analysis
github.com · 2025-05-27

### JeeSite 5 SSRF & Arbitrary File Read Vulnerability **Version:** JeeSite v5.11 **Google Dork:** N/A **Date:** 05/21/2025 **Tested on:** Windows 11, Java 17, MySQL 8.0 **Software Link:** https://git…

Read more
CVSS 4.9
Strapi SSRF Vulnerability (CVE-2021-41788) Analysis and Reproduction
github.com · 2025-05-30

### Critical Vulnerability Information #### Vulnerability Type - Server-Side Request Forgery (SSRF) in Webhook function #### Affected Versions - @strapi/admin =1.25.2 #### Description In Strapi's inte…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.