RSS   Vulnerabilities for 'Pywps'   RSS

2021-08-23
 
CVE-2021-39371

CWE-611
 

 
An XML external entity (XXE) injection in PyWPS before 4.5.0 allows an attacker to view files on the application server filesystem by assigning a path to the entity. OWSLib 0.24.1 may also be affected.

 

 >>> Vendor: Osgeo 2 Products
Geoserver
Pywps


Copyright 2024, cxsecurity.com

 

Back to Top