Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

API SSRF

This page lists 8 vulnerabilities in this category.

Vulnerability Name
CVE
CWE
Severity
Server-Side Request Forgery
-
CWE-918
Critical
Auxiliary systems SSRF
-
CWE-918
High
HTTP/2 pseudo-header server side request forgery
-
CWE-918
High
SAML Consumer Service XML entity injection (XXE)
-
CWE-611
High
SAML Consumer Service XSLT injection
-
CWE-91
High
Unvalidated JWT jku parameter
-
CWE-287
High
Reverse proxy misrouting through HTTP/2 pseudo-headers (SSRF)
-
CWE-918
Medium
SAML Consumer Service External Dereference SSRF
-
CWE-918
Medium