Resources

Vulnerability & Exploit Database

This is the list of vulnerabilities you can detect with Pentest-Tools.com and the exploits currently available in the platform.

We detect more than 16.520 vulnerabilities with multiple tools (Network Scanner, Website Scanner, Wordpress Scanner, and more) and we also have 177 exploit modules in Sniper to validate the risk level of critical CVEs.

Display

Search results for: SSRF

Displaying 1 - 25 results out of 165

Pentest-Tools.com Vulnerabilities
Name	Detectable with	Detection added	Severity	Exploitable with Sniper
Atlassian Confluence XSLT Macro - Server-Side Request Forgery CVE-2024-29415	Network Scanner	Jan 29, 2026	Medium(6.5)	No
Prometheus Blackbox Exporter - Server-Side Request Forgery (SSRF) CVE-2020-16248	Network Scanner	Jan 25, 2026	Medium(5.8)	No
Ektron CMS Blogs xmlrpc.aspx - XML External Entity Injection	Network Scanner	Jan 19, 2026	N/A	No
Selenium Grid Exposure	Network Scanner	Jan 14, 2026	N/A	No
Gradio Image Component - Server-Side Request Forgery (None) CVE-2024-7823	Network Scanner	Jan 13, 2026	High(8.6)	No
Wordpress Jetpack plugin - Server Side Request Forgery	Network Scanner	Jan 9, 2026	N/A	No
Astro - Broken Access Control CVE-2025-64525	Network Scanner	Nov 25, 2025	Medium(6.5)	No
Cisco Finesse - Server-Side Request Forgery (SSRF) CVE-2024-20404	Network Scanner	Nov 25, 2025	Medium(5.8)	No
Bentoml - Server Side Request Forgery	Network Scanner	Nov 8, 2025	N/A	No
Imgproxy < 3.27.2 - Server-Side Request Forgery (SSRF) CVE-2025-24354	Network Scanner	Oct 27, 2025	Medium(5.3)	No
Adobe Experience Manager (up to 6.5.23.0) SSRF CVE-2025-54249	Network Scanner	Oct 10, 2025	Medium(6.5)	No
Zimbra Collaboration Suite - SSRF CVE-2019-9621	Network Scanner	Sep 27, 2025	High(7.5)	No
WordPress <= 6.2 - Server Side Request Forgery CVE-2022-3590	Network Scanner	Sep 20, 2025	Medium(5.9)	No
Astro Cloudflare Adapter - Server Side Request Forgery CVE-2025-58179	Network Scanner	Sep 19, 2025	High(7.2)	No
Stirling-PDF SSRF via Markdown CVE-2025-55161	Network Scanner	Sep 18, 2025	High(8.6)	No
Memos 0.13.2 - Server-Side Request Forgery CVE-2024-29030	Network Scanner	Sep 12, 2025	Medium(6.1)	No
Memos 0.13.2 - Cross-Site Scripting & SSRF CVE-2024-29029	Network Scanner	Sep 5, 2025	Medium(6.1)	No
Next.js Middleware - Server-Side Request Forgery CVE-2025-57822	Network Scanner	Sep 5, 2025	Medium(6.5)	No
Memos 0.13.2 - Server-Side Request Forgery CVE-2024-29028	Network Scanner	Sep 5, 2025	Medium(5.3)	No
Portal API - Server Side Request Forgery	Network Scanner	Aug 30, 2025	N/A	No
Request-Baskets <= 1.2.1 - Server Side Request Forgery CVE-2023-27163	Network Scanner	Aug 21, 2025	Medium(6.5)	No
Apache Druid - Server-Side Request Forgery CVE-2025-27888	Network Scanner	Aug 18, 2025	Medium(5.4)	No
TiTiler - Blind Server Side Request Forgery	Network Scanner	Aug 12, 2025	N/A	No
GeoServer Demo Request Endpoint - Server Side Request Forgery CVE-2024-29198	Network Scanner	Jul 18, 2025	High(7.5)	No
LyLme spage v1.9.5 - Server-Side Request Forgery CVE-2024-36675	Network Scanner	Jul 18, 2025	Critical(9.1)	No