Uploaded image for project: 'GeoServer'
  1. GeoServer
  2. GEOS-7850

XML injection vulnerability

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Medium
    • Resolution: Fixed
    • Affects Version/s: 2.9.2, 2.10.0
    • Fix Version/s: 2.9.3, 2.10.1
    • Component/s: Vulnerability
    • Labels:
      None

      Description

      Since this is a security issue, I'll e-mail about the details.

        Attachments

          Issue links

          relates to

          Bug - A problem which impairs or prevents the functions of the product. GEOS-6632 Cross-site scripting vulnerability in WMS exceptions

          • Medium - Has the potential to affect progress.
          • Closed

            Activity

              People

              • Assignee:
                aaime Andrea Aime
                Reporter:
                nickm nickm
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: