Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-17668

Malicious code in bioql PyPI...

7.5CVSS6.4AI score0.00372EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2025/05/23 9:59 a.m.8 views

CVE-2024-23643

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. A stored cross-site scripting XSS vulnerability exists in versions prior to 2.23.2 and 2.24.1 that enables an authenticated administrator with workspace-level privileges to store a...

4.8CVSS5.4AI score0.00426EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/12/10 12:0 a.m.8 views

GeoServer < 2.23.4 Multiples Vulnerabilities

According to its banner, the version of GeoServer running on the remote host is prior to 2.23.5 or 2.24.0 prior to 2.24.2. It is, therefore, affected by Multiples Vulnerabilities : - An Arbitrary file upload vulnerability in REST Coverage Store API - A Stored Cross-Site Scripting XSS vulnerabilit...

7.2CVSS6AI score0.01867EPSS
Exploits1References12
Tenable Nessus
Tenable Nessus
added 2024/12/10 12:0 a.m.6 views

GeoServer 2.24.0 < 2.24.1 Multiples Vulnerabilities

According to its banner, the version of GeoServer running on the remote host is prior to 2.23.5 or 2.24.0 prior to 2.24.2. It is, therefore, affected by Multiples Vulnerabilities : - An Arbitrary file upload vulnerability in REST Coverage Store API - A Stored Cross-Site Scripting XSS vulnerabilit...

7.2CVSS6AI score0.01867EPSS
Exploits1References12
NVD
NVD
added 2024/03/20 6:15 p.m.14 views

CVE-2024-23821

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. A stored cross-site scripting XSS vulnerability exists in versions prior to 2.23.4 and 2.24.1 that enables an authenticated administrator with workspace-level privileges to store a...

4.8CVSS4.9AI score0.00405EPSS
Exploits0References3
NVD
NVD
added 2024/03/20 6:15 p.m.20 views

CVE-2024-23643

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. A stored cross-site scripting XSS vulnerability exists in versions prior to 2.23.2 and 2.24.1 that enables an authenticated administrator with workspace-level privileges to store a...

4.8CVSS4.9AI score0.00426EPSS
Exploits0References4
CVE
CVE
added 2024/03/20 6:3 p.m.105 views

CVE-2024-23821

GeoServer exposes a stored XSS in the GWC Demos Page. Affected: GeoServer with GWC Demos Page accessible to all users; vulnerability requires an authenticated administrator with workspace‑level privileges to store a JavaScript payload in the GeoServer catalog, which then executes in another user’...

4.8CVSS4.8AI score0.00405EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2024/03/20 6:3 p.m.14 views

CVE-2024-23821 GeoServer's GWC Demos Page vulnerable to Stored Cross-Site Scripting (XSS)

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. A stored cross-site scripting XSS vulnerability exists in versions prior to 2.23.4 and 2.24.1 that enables an authenticated administrator with workspace-level privileges to store a...

4.8CVSS5.1AI score0.00405EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/03/20 6:3 p.m.16 views

CVE-2024-23821 GeoServer's GWC Demos Page vulnerable to Stored Cross-Site Scripting (XSS)

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. A stored cross-site scripting XSS vulnerability exists in versions prior to 2.23.4 and 2.24.1 that enables an authenticated administrator with workspace-level privileges to store a...

4.8CVSS5.2AI score0.00405EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/03/20 5:50 p.m.22 views

CVE-2024-23643 GeoServer Stored Cross-Site Scripting (XSS) vulnerability in GWC Seed Form

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. A stored cross-site scripting XSS vulnerability exists in versions prior to 2.23.2 and 2.24.1 that enables an authenticated administrator with workspace-level privileges to store a...

4.8CVSS5.1AI score0.00426EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/03/20 5:50 p.m.25 views

CVE-2024-23643 GeoServer Stored Cross-Site Scripting (XSS) vulnerability in GWC Seed Form

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. A stored cross-site scripting XSS vulnerability exists in versions prior to 2.23.2 and 2.24.1 that enables an authenticated administrator with workspace-level privileges to store a...

4.8CVSS5.4AI score0.00426EPSS
Exploits0References4
OSV
OSV
added 2024/03/20 5:50 p.m.22 views

CVE-2024-23643 GeoServer Stored Cross-Site Scripting (XSS) vulnerability in GWC Seed Form

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. A stored cross-site scripting XSS vulnerability exists in versions prior to 2.23.2 and 2.24.1 that enables an authenticated administrator with workspace-level privileges to store a...

4.8CVSS5.4AI score0.00426EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2024/03/20 3:18 p.m.21 views

GeoServer's GWC Demos Page vulnerable to Stored Cross-Site Scripting (XSS)

Summary A stored cross-site scripting XSS vulnerability exists that enables an authenticated administrator with workspace-level privileges to store a JavaScript payload in the GeoServer catalog that will execute in the context of another user's browser when viewed in the GWC Demos Page. Access to...

4.8CVSS5.5AI score0.00405EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2024/03/20 3:13 p.m.18 views

GeoServer's GWC Seed Form vulnerable to Stored Cross-Site Scripting (XSS)

Summary A stored cross-site scripting XSS vulnerability exists that enables an authenticated administrator with workspace-level privileges to store a JavaScript payload in the GeoServer catalog that will execute in the context of another administrator’s browser when viewed in the GWC Seed Form...

4.8CVSS5.5AI score0.00426EPSS
Exploits0References7Affected Software1
Positive Technologies
Positive Technologies
added 2024/03/20 12:0 a.m.91 views

PT-2024-19994 · Geoserver · Geoserver

Name of the Vulnerable Software and Affected Versions: GeoServer versions prior to 2.23.2 and 2.24.1 Description: A stored cross-site scripting XSS issue exists that enables an authenticated administrator with workspace-level privileges to store a JavaScript payload in the GeoServer catalog. This...

4.8CVSS5.8AI score0.00426EPSS
Exploits0References12
CNNVD
CNNVD
added 2023/10/26 12:0 a.m.4 views

GeoServer GeoWebCache Security Vulnerability

GeoWebCache is a Java Web application for caching map slices from various sources, such as the OGC Web Map Service WMS. A security vulnerability exists in GeoServer GeoWebCache version 1.15.1 and earlier, which stems from an unauthorized access vulnerability in the /geoserver/gwc/rest.html page...

8.8CVSS6.7AI score0.00844EPSS
Exploits1References4
0day.today
0day.today
added 2015/07/11 12:0 a.m.21 views

GWC CMS 1.0 SQL Injection Exploit

Exploit for php platform in category web applications Exploit Title: GWC CMS SQL Injection Vulnerability Exploit Author: nopesled Google Dork: "inurl:?langid=1 inurl:topmenuid=" Date: 08/07/2015 Version: 1.0 Tested on: Linux !/usr/bin/perl use LWP::UserAgent; use HTTP::Request::Common qwGET; prin...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2015/07/08 12:0 a.m.21 views

GWC CMS 1.0 SQL Injection

Exploit Title: GWC CMS SQL Injection Vulnerability Exploit Author: nopesled Google Dork: "inurl:?langid=1 inurl:topmenuid=" Date: 08/07/2015 Version: 1.0 Tested on: Linux !/usr/bin/perl use LWP::UserAgent; use HTTP::Request::Common qwGET; print " == Exploit by nopesled == \n"; if @ARGV new;...

7.4AI score
Exploits0
Rows per page
Query Builder