pkg:maven/org.geoserver/gs-gwc
Type
maven
Namespace
org.geoserver
Name
gs-gwc
Known advisories, vulnerabilities and fixes for org.geoserver/gs-gwc package.
High
1
Moderate
1
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | < 2.23.4 >= 2.24.0, < 2.24.1 |
CVE-2024-23821
|
MAVEN:GHSA-88WC-FCJ9-Q3R9 | GeoServer's GWC Demos Page vulnerable to Stored Cross-Site Scripting (XSS) | moderate |
2024-03-20T15:18:21
(6 months ago) |
|
Fixed | = 2.23.4 = 2.24.1 |
CVE-2024-23821
|
MAVEN:GHSA-88WC-FCJ9-Q3R9 | GeoServer's GWC Demos Page vulnerable to Stored Cross-Site Scripting (XSS) | moderate |
2024-03-20T15:18:21
(6 months ago) |
|
Affected | >= 2.24.0, < 2.24.3 < 2.23.5 |
CVE-2024-24749
|
MAVEN:GHSA-JHQX-5V5G-MPF3 | Classpath resource disclosure in GWC Web Resource API on Windows / Tomcat | high |
2024-07-01T19:24:04
(2 months ago) |
|
Fixed | = 2.24.3 = 2.23.5 |
CVE-2024-24749
|
MAVEN:GHSA-JHQX-5V5G-MPF3 | Classpath resource disclosure in GWC Web Resource API on Windows / Tomcat | high |
2024-07-01T19:24:04
(2 months ago) |