Server-Side Request Forgery (SSRF)

Server-Side Request Forgery (SSRF) is a web application vulnerability that allows an attacker to cause the server to make HTTP requests to unintended destinations.

Vulnerability ManagementVSDVulnerabilityIntermediateCONFIDENTIAL2,317 words10 min readApr 7, 2026

Last updated Apr 7, 2026Currentv2

CLASSIFICATION: CONFIDENTIAL

This article requires CONFIDENTIAL clearance or higher.

What you need

Create a free Nexus ID to access CDA proprietary content including PDM domain explainers, methodology deep-dives, and reconnaissance mission briefings.

Create Nexus ID (Free)

Also at this clearance level

Threat IntelligenceTIDThreatIntermediate

Table of Contents

Server-Side Request Forgery (SSRF)

What you need

Also at this clearance level

APT28 (Fancy Bear / Forest Blizzard)

Lazarus Group (HIDDEN COBRA / Diamond Sleet)

Salt Typhoon

Single Sign-On (SSO) Architecture

The Academy

The Command Post

The Armory