Maven package
org.mapfish.print/print-standalone
pkg:maven/org.mapfish.print/print-standalone
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-15232 | — | >= 3.0, < 3.24 | 3.24 | Oct 2, 2020 | In mapfish-print before version 3.24, a user can do to an XML External Entity (XXE) attack with the provided SDL style. | ||
| CVE-2020-15231 | — | < 3.24 | 3.24 | Oct 2, 2020 | In mapfish-print before version 3.24, a user can use the JSONP support to do a Cross-site scripting. |
- CVE-2020-15232Oct 2, 2020affected >= 3.0, < 3.24fixed 3.24
In mapfish-print before version 3.24, a user can do to an XML External Entity (XXE) attack with the provided SDL style.
- CVE-2020-15231Oct 2, 2020affected < 3.24fixed 3.24
In mapfish-print before version 3.24, a user can use the JSONP support to do a Cross-site scripting.