Skip to content
← Back to Glossary
Server-Side Checked by Vezraa

Server-Side Request Forgery (SSRF)

An attack that tricks your server into making requests to internal or cloud metadata services.

SSRF occurs when your server fetches user-provided URLs. Attackers target internal services (e.g., AWS metadata at 169.254.169.254), localhost endpoints, or internal APIs. Critical in cloud environments for credential theft.

Related Terms

See if your app is vulnerable

Vezraa checks for this security issues. Scan in 25 seconds.

Server-Side Request Forgery (SSRF) — Security Glossary | Vezraa