Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/
API SSRF
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
API SSRF
This page lists
8 vulnerabilities
in this category.
Vulnerability Name
CVE
CWE
Severity
Server-Side Request Forgery
-
CWE-918
Critical
Auxiliary systems SSRF
-
CWE-918
High
HTTP/2 pseudo-header server side request forgery
-
CWE-918
High
SAML Consumer Service XML entity injection (XXE)
-
CWE-611
High
SAML Consumer Service XSLT injection
-
CWE-91
High
Unvalidated JWT jku parameter
-
CWE-287
High
Reverse proxy misrouting through HTTP/2 pseudo-headers (SSRF)
-
CWE-918
Medium
SAML Consumer Service External Dereference SSRF
-
CWE-918
Medium
