Vulnerabilities > Mapfish

DATE CVE VULNERABILITY TITLE RISK
2020-10-02 CVE-2020-15232 XXE vulnerability in Mapfish Print
In mapfish-print before version 3.24, a user can do to an XML External Entity (XXE) attack with the provided SDL style.
network
low complexity
mapfish CWE-611
6.4
2020-10-02 CVE-2020-15231 Cross-site Scripting vulnerability in Mapfish Print
In mapfish-print before version 3.24, a user can use the JSONP support to do a Cross-site scripting.
network
mapfish CWE-79
4.3