VYPR

Mapfish Print

by Mapfish

Source repositories

CVEs (3)

  • CVE-2026-44672CriMay 28, 2026
    risk 0.53cvss epss 0.00

    mapfish-print is a component of MapFish for printing templated cartographic maps. From 3.23.0 to before 3.28.28, 3.30.30, 3.31.22, 3.33.14, and 4.0.3, the attacker can execute arbitrary code in Dynamic table without being authenticated. This vulnerability is fixed in 3.28.28,…

  • CVE-2020-15232Oct 2, 2020
    risk 0.00cvss epss 0.01

    In mapfish-print before version 3.24, a user can do to an XML External Entity (XXE) attack with the provided SDL style.

  • CVE-2020-15231Oct 2, 2020
    risk 0.00cvss epss 0.01

    In mapfish-print before version 3.24, a user can use the JSONP support to do a Cross-site scripting.