CVE-2024-35627

TileServer-GL up to v4.4.10 is affected by a cross-site scripting (XSS) vulnerability via the /data/v3/?key component. The issue enables injection of malicious scripts and is described in the Nuclei template and CVE record as affecting tileserver-gl with potential impact to user sessions or sensi...

TileServer GL 安全漏洞

TileServer GL is an open source map server for vector blocks from the Maptiler team. A security vulnerability exists in TileServer GL v4.4.10 and earlier, which stems from a cross-site scripting XSS vulnerability in component /data/v3/?key...