Top 25 Server-Side Request Forgery (SSRF) Bug Bounty Reports

(Photo by Taylor Vick on Unsplash)

In this article, we will discuss the Server-Side Request Forgery (SSRF) vulnerability, and present 25 disclosed reports based on this flaw.

What is Server-Side Request Forgery?

SSRF is when you, as an attacker, successfully make the application triggering arbitrary requests.

--

--

--

Cyber Security Enthusiast, Freelancer, Researcher, Bug Bounty Hunter and InfoSec Writer.

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

SEC Adding 20 Team Members to Ramp up Crypto Enforcement Unit — Derev Blog

Body Paragraph

{UPDATE} Escape Prison: framed 4 murder Hack Free Resources Generator

BlueYard x EthCC —  (On|Off) Chain

Handling merges and conflicts in an encrypted GitHub Zettelkasten

A Guide to RSA Encryption in Go

Cliff Exchange

THM — Investigating Windows

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Cristian Cornea

Cristian Cornea

Cyber Security Enthusiast, Freelancer, Researcher, Bug Bounty Hunter and InfoSec Writer.

More from Medium

X-XSS-Protection headers. Protection or vulnerability?

How to attack Offensive Security Web Expert (OSWE)

Some critical vulnerabilities found with passive analysis on bug bounty programs explained

The Unobvious About XSS and HTML Encoding