BugFlow

Writeups analysis | SSRF

1. SSRF in Search.gov via ?url= parameter 514224
2. SSRF in Exchange leads to ROOT access in all instances 341876
3. Server Side Request Forgery (SSRF) via Analytics Reports 2262382
4. Server-Side Request Forgery using Javascript allows to exfill data from Google Metadata 530974
5. SSRF on project import via the remote_attachment_url on a Note 826361
6. Server Side Request Forgery mitigation bypass 632101
7. Blind SSRF to internal services in matrix preview_link API 1960765
8. SSRF leaking internal google cloud data through upload function 549882
9. Full read SSRF in www.evernote.com that can leak aws metadata and local file inclusion 1189367
10. SSRF in graphQL query (pwapi.ex2b.com) 1864188
11. SSRF on duckduckgo.com/iu/ 398641
12. Unauthenticated blind SSRF in OAuth Jira authorization controller 398799
13. SSRF in webhooks leads to AWS private keys disclosure 508459
14. Full Read SSRF on Gitlab’s Internal Grafana 878779