497 matches found
GeoServer 信息泄露漏洞
GeoServer is GeoServer open source an open source software server written in Java. It allows users to share and edit geospatial data. An information disclosure vulnerability exists in GeoServer versions prior to 2.25.1, which stems from allowing users to share and edit geospatial data...
PT-2024-26395 · Geoserver · Geoserver
Name of the Vulnerable Software and Affected Versions: GeoServer versions prior to 2.26.0 Description: GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. In affected versions, the welcome and about page includes version and revision...
The software for managing and publishing geodata on the OSGeo GeoServer platform is vulnerable due to lack of measures taken to protect the website structure. This vulnerability allows attackers to perform cross-site scripting attacks (XSS).
The vulnerability of the software for managing and publishing geodata on the OSGeo GeoServer server exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor, operating remotely, to perform cross-site scripting attacks X...
GeoServer < 2.23.4 Path Traversal
According to its banner, the version of GeoServer running on the remote host is prior to 2.23.4. It is, therefore, affected by a Path Traversal. Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number. No source data...
GeoServer 2.24.0 < 2.24.2 Path Traversal
According to its banner, the version of GeoServer running on the remote host is prior to 2.23.5 or 2.24.0 prior to 2.24.2. It is, therefore, affected by an Arbitrary File Renaming. Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported...
GeoServer < 2.23.5 Path Traversal
According to its banner, the version of GeoServer running on the remote host is prior to 2.23.5 or 2.24.0 prior to 2.24.3. It is, therefore, affected by a Path Traversal. Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version...
GeoServer 2.10.0 < 2.24.4 Sensitive Information Exposure
According to its banner, the version of GeoServer running on the remote host is 2.10.0 prior to 2.24.4 or 2.25.x prior to 2.25.1. It is, therefore, affected by a Sensitive Information Exposure. Note that the scanner has not tested for these issues but has instead relied only on the application's...
GeoServer 2.24.0 < 2.24.3 Path Traversal
According to its banner, the version of GeoServer running on the remote host is prior to 2.23.5 or 2.24.0 prior to 2.24.3. It is, therefore, affected by a Path Traversal. Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version...
GeoServer < 2.23.3 Multiples Vulnerabilities
According to its banner, the version of GeoServer running on the remote host is prior to 2.23.3. It is, therefore, affected by Multiples Vulnerabilities : - A Stored Cross-Site Scripting XSS vulnerability in Style Publisher - A Stored Cross-Site Scripting XSS vulnerability in REST Resources API...
GeoServer 2.25.0 < 2.25.1 Sensitive Information Exposure
According to its banner, the version of GeoServer running on the remote host is 2.10.0 prior to 2.24.4 or 2.25.x prior to 2.25.1. It is, therefore, affected by a Sensitive Information Exposure. Note that the scanner has not tested for these issues but has instead relied only on the application's...
GeoServer < 2.19.6 Insecure Deserialization
According to its banner, the version of GeoServer running on the remote host is prior to 2.19.6 or 2.20.0 2.20.4. It is, therefore, affected by an Insecure Deserialization Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version...
GeoServer 2.24.0 < 2.24.1 Multiples Vulnerabilities
According to its banner, the version of GeoServer running on the remote host is prior to 2.23.5 or 2.24.0 prior to 2.24.2. It is, therefore, affected by Multiples Vulnerabilities : - An Arbitrary file upload vulnerability in REST Coverage Store API - A Stored Cross-Site Scripting XSS vulnerabilit...
GeoServer < 2.22.5 Multiples Vulnerabilities
According to its banner, the version of GeoServer running on the remote host is prior to 2.22.5 or 2.23.0 parameter Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number. No source data...
GeoServer 2.20.0 < 2.20.4 Insecure Deserialization
According to its banner, the version of GeoServer running on the remote host is prior to 2.19.6 or 2.20.0 2.20.4. It is, therefore, affected by an Insecure Deserialization Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version...
GeoServer 2.23.0 < 2.23.1 Multiples Vulnerabilities
According to its banner, the version of GeoServer running on the remote host is prior to 2.22.5 or 2.23.0 parameter Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number. No source data...
GeoServer < 2.23.4 Multiples Vulnerabilities
According to its banner, the version of GeoServer running on the remote host is prior to 2.23.5 or 2.24.0 prior to 2.24.2. It is, therefore, affected by Multiples Vulnerabilities : - An Arbitrary file upload vulnerability in REST Coverage Store API - A Stored Cross-Site Scripting XSS vulnerabilit...
Exploit for Code Injection in Geoserver
CVE-2024-36401 Usage bash python3 e...
Exploit for Code Injection in Geoserver
CVE-2024-36401-poc CVE-2024-36401 is a high-risk remote code...
Exploit for Code Injection in Geoserver
CVE-2024-36401-WoodpeckerPlugin Introduction CVE-2024-36...
Exploit for Code Injection in Geoserver
CVE-2024-36401 This is a program for checking vulnerabilities...