Resources

Vulnerability & Exploit Database

This is the list of vulnerabilities you can detect with Pentest-Tools.com and the exploits currently available in the platform.

We detect more than 15.875 vulnerabilities with multiple tools (Network Scanner, Website Scanner, Wordpress Scanner, and more) and we also have 171 exploit modules in Sniper to validate the risk level of critical CVEs.

Display

Search results for: SSRF

Displaying 1 - 25 results out of 156

Pentest-Tools.com Vulnerabilities
Name	Detectable with	Detection added	CVSSv3	EPSS Score	EPSS Percentile	Exploitable with Sniper
Imgproxy < 3.27.2 - Server-Side Request Forgery (SSRF) CVE-2025-24354	Network Scanner	Oct 27, 2025	Medium(5.3)	0.04	0.88	No
Adobe Experience Manager (up to 6.5.23.0) SSRF CVE-2025-54249	Network Scanner	Oct 10, 2025	Medium(6.5)	0.11	0.93	No
Zimbra Collaboration Suite - SSRF CVE-2019-9621	Network Scanner	Sep 27, 2025	High(7.5)	0.95	1	No
WordPress <= 6.2 - Server Side Request Forgery CVE-2022-3590	Network Scanner	Sep 20, 2025	Medium(5.9)	0.91	1	No
Astro Cloudflare Adapter - Server Side Request Forgery CVE-2025-58179	Network Scanner	Sep 19, 2025	High(7.2)	0.02	0.79	No
Stirling-PDF SSRF via Markdown CVE-2025-55161	Network Scanner	Sep 18, 2025	High(8.6)	0.04	0.87	No
Memos 0.13.2 - Server-Side Request Forgery CVE-2024-29030	Network Scanner	Sep 12, 2025	Medium(6.1)	0.06	0.9	No
Memos 0.13.2 - Server-Side Request Forgery CVE-2024-29028	Network Scanner	Sep 5, 2025	Medium(5.3)	0.06	0.91	No
Next.js Middleware - Server-Side Request Forgery CVE-2025-57822	Network Scanner	Sep 5, 2025	Medium(6.5)	0.06	0.9	No
Memos 0.13.2 - Cross-Site Scripting & SSRF CVE-2024-29029	Network Scanner	Sep 5, 2025	Medium(6.1)	0.03	0.86	No
Portal API - Server Side Request Forgery	Network Scanner	Aug 30, 2025	High	N/A	N/A	No
Request-Baskets <= 1.2.1 - Server Side Request Forgery CVE-2023-27163	Network Scanner	Aug 21, 2025	Medium(6.5)	0.93	1	No
Apache Druid - Server-Side Request Forgery CVE-2025-27888	Network Scanner	Aug 18, 2025	High(5.4)	0.03	0.85	No
TiTiler - Blind Server Side Request Forgery	Network Scanner	Aug 12, 2025	High	N/A	N/A	No
GeoServer Demo Request Endpoint - Server Side Request Forgery CVE-2024-29198	Network Scanner	Jul 18, 2025	High(7.5)	0.05	0.89	No
LyLme spage v1.9.5 - Server-Side Request Forgery CVE-2024-36675	Network Scanner	Jul 18, 2025	Critical(9.1)	0.5	0.98	No
OneNav v0.9.35-20240318 - Server-Side Request Forgery (SSRF) CVE-2024-33832	Network Scanner	Jul 18, 2025	Medium(6.5)	0.04	0.88	No
WordPress Broken Link Notifier < 1.3.1 - Unauthenticated SSRF CVE-2025-6851	Network Scanner	Jul 16, 2025	High(7.5)	0.02	0.79	No
Gradio - Server-Side Request Forgery CVE-2024-4325	Network Scanner	Jun 24, 2025	High(8.6)	0.5	0.98	No
GeoServer WFS - XXE Processing Vulnerability CVE-2025-30220	Network Scanner	Jun 18, 2025	Critical(9.9)	0.04	0.88	No
Grafana - XSS / Open Redirect / SSRF via Client Path Traversal CVE-2025-4123	Network Scanner	May 23, 2025	High(7.6)	0.06	0.9	No
draw.io < 18.0.5 - Server Side Request Forgery (SSRF) CVE-2022-1711	Network Scanner	May 2, 2025	High(7.5)	0.31	0.97	No
Commvault - SSRF via /commandcenter/deployWebpackage.do CVE-2025-34028	Network Scanner	Apr 28, 2025	Critical(10)	0.67	0.99	No
WordPress CAS Theme <= 1.0.0 - Server-Side Request Forgery CVE-2024-4399	Network Scanner	Mar 14, 2025	Critical(9.1)	0.31	0.97	No
WordPress WPB Show Core <= 2.2 - Server-Side Request Forgery CVE-2023-5974	Network Scanner	Mar 14, 2025	Critical(9.8)	0.84	1	No

Vulnerability & Exploit Database

One of EMEA's fastest-growing tech companies.

48,000+ security folks are here. Are you?

More than demos - real faces, real insight.

Security leaders trust what they can prove