Vulnerabilities > Mapfish > Print > 3.10.8
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-10-02 | CVE-2020-15232 | XXE vulnerability in Mapfish Print In mapfish-print before version 3.24, a user can do to an XML External Entity (XXE) attack with the provided SDL style. | 6.4 |
2020-10-02 | CVE-2020-15231 | Cross-site Scripting vulnerability in Mapfish Print In mapfish-print before version 3.24, a user can use the JSONP support to do a Cross-site scripting. | 4.3 |