VYPR

Zoo Project

by Zoo Project

Source repositories

CVEs (4)

  • CVE-2025-25284HigFeb 18, 2025
    risk 0.50cvss epss 0.01

    The ZOO-Project is an open source processing platform, released under MIT/X11 Licence. A vulnerability in ZOO-Project's WPS (Web Processing Service) implementation allows unauthorized access to files outside the intended directory through path traversal. Specifically, the…

  • CVE-2024-53982HigDec 4, 2024
    risk 0.50cvss epss 0.00

    ZOO-Project is a C-based WPS (Web Processing Service) implementation. A path traversal vulnerability was discovered in Zoo-Project Echo example. The Echo example available by default in Zoo installs implements file caching, which can be controlled by user-given parameters. No…

  • CVE-2025-25190MedFeb 10, 2025
    risk 0.29cvss epss 0.01

    The ZOO-Project is an open source processing platform. The ZOO-Project Web Processing Service (WPS) Server contains a Cross-Site Scripting (XSS) vulnerability in its EchoProcess service prior to commit 7a5ae1a. The vulnerability exists because the EchoProcess service directly…

  • CVE-2025-25189MedFeb 10, 2025
    risk 0.29cvss epss 0.00

    The ZOO-Project is an open source processing platform. A reflected Cross-Site Scripting vulnerability exists in the ZOO-Project Web Processing Service (WPS) publish.py CGI script prior to commit 7a5ae1a. The script reflects user input from the `jobid` parameter in its HTTP…