PT-2020-14462 · Tileserver Gl · Tileserver-Gl

Name of the Vulnerable Software and Affected Versions: TileServer GL versions prior to 3.0.0 Description: An issue was discovered in server.js where the content of the key GET parameter is reflected unsanitized in an HTTP response for the application's main page, causing reflected XSS...