Vulnerability & Exploit Database

This is the list of vulnerabilities you can detect with Pentest-Tools.com and the exploits currently available in the platform.

We detect more than 16.771 vulnerabilities with multiple tools (Network Scanner, Website Scanner, Wordpress Scanner, and more) and we also have 182 exploit modules in Sniper to validate the risk level of critical CVEs.

Display

Search results for: SSRF

Displaying 1 - 25 results out of 166

Pentest-Tools.com Vulnerabilities
Name	Detectable with	Detection added	CVSSv3	EPSS Score	EPSS Percentile	Exploitable with Sniper
Hasura GraphQL Engine - Server Side Request Forgery	Network Scanner	Feb 26, 2026	High	N/A	N/A	No
Microsoft Exchange - Pre-Auth SSRF / ACL Bypass (ProxyNotFound) CVE-2021-28480	Network Scanner	Feb 18, 2026	Critical(9.8)	0.9	1	No
Atlassian Confluence XSLT Macro - Server-Side Request Forgery CVE-2024-29415	Network Scanner	Jan 29, 2026	Medium(6.5)	0.85	1	No
Prometheus Blackbox Exporter - Server-Side Request Forgery (SSRF) CVE-2020-16248	Network Scanner	Jan 25, 2026	Medium(5.8)	0.04	0.88	No
Ektron CMS Blogs xmlrpc.aspx - XML External Entity Injection	Network Scanner	Jan 19, 2026	High	N/A	N/A	No
Selenium Grid Exposure	Network Scanner	Jan 14, 2026	High	N/A	N/A	No
Gradio Image Component - Server-Side Request Forgery (None) CVE-2024-7823	Network Scanner	Jan 13, 2026	High(8.6)	N/A	N/A	No
Wordpress Jetpack plugin - Server Side Request Forgery	Network Scanner	Jan 9, 2026	Medium	N/A	N/A	No
Astro - Broken Access Control CVE-2025-64525	Network Scanner	Nov 25, 2025	Medium(6.5)	0.02	0.8	No
Cisco Finesse - Server-Side Request Forgery (SSRF) CVE-2024-20404	Network Scanner	Nov 25, 2025	Medium(5.8)	0.78	0.99	No
Bentoml - Server Side Request Forgery	Network Scanner	Nov 8, 2025	High	N/A	N/A	No
Imgproxy < 3.27.2 - Server-Side Request Forgery (SSRF) CVE-2025-24354	Network Scanner	Oct 27, 2025	Medium(5.3)	0.03	0.85	No
Adobe Experience Manager (up to 6.5.23.0) SSRF CVE-2025-54249	Network Scanner	Oct 10, 2025	Medium(6.5)	0.07	0.91	No
Zimbra Collaboration Suite - SSRF CVE-2019-9621	Network Scanner	Sep 27, 2025	High(7.5)	0.95	1	No
WordPress <= 6.2 - Server Side Request Forgery CVE-2022-3590	Network Scanner	Sep 20, 2025	Medium(5.9)	0.92	1	No
Astro Cloudflare Adapter - Server Side Request Forgery CVE-2025-58179	Network Scanner	Sep 19, 2025	High(7.2)	0.01	0.63	No
Stirling-PDF SSRF via Markdown CVE-2025-55161	Network Scanner	Sep 18, 2025	High(8.6)	0.05	0.9	No
Memos 0.13.2 - Server-Side Request Forgery CVE-2024-29030	Network Scanner	Sep 12, 2025	Medium(6.1)	0.05	0.9	No
Memos 0.13.2 - Cross-Site Scripting & SSRF CVE-2024-29029	Network Scanner	Sep 5, 2025	Medium(6.1)	0.02	0.83	No
Next.js Middleware - Server-Side Request Forgery CVE-2025-57822	Network Scanner	Sep 5, 2025	Medium(6.5)	0.06	0.91	No
Memos 0.13.2 - Server-Side Request Forgery CVE-2024-29028	Network Scanner	Sep 5, 2025	Medium(5.3)	0.07	0.91	No
Portal API - Server Side Request Forgery	Network Scanner	Aug 30, 2025	High	N/A	N/A	No
Request-Baskets <= 1.2.1 - Server Side Request Forgery CVE-2023-27163	Network Scanner	Aug 21, 2025	Medium(6.5)	0.93	1	No
Apache Druid - Server-Side Request Forgery CVE-2025-27888	Network Scanner	Aug 18, 2025	High(5.4)	0.01	0.77	No
TiTiler - Blind Server Side Request Forgery	Network Scanner	Aug 12, 2025	High	N/A	N/A	No

Vulnerability & Exploit Database

One of EMEA's fastest-growing tech companies

Independently audited company-wide ISMS

50,000+ security folks are here. Are you?

Security leaders trust what they can prove