CVE-2017-1000426

Опубликовано: 02 янв. 2018

Источник: debian

EPSS Низкий

Описание

MapProxy version 1.10.3 and older is vulnerable to a Cross Site Scripting attack in the demo service resulting in possible information disclosure.

Пакет	Статус	Версия исправления	Релиз	Тип
mapproxy	fixed	1.10.4-1		package
mapproxy	fixed	1.9.0-3+deb9u1	stretch	package

https://github.com/mapproxy/mapproxy/issues/322
https://github.com/mapproxy/mapproxy/commit/2e102843203c11b02c002daa08ca59d05d5eff5a (master)
https://github.com/mapproxy/mapproxy/commit/87faa667007b00ef11ee09b16707aa9ad2e8da28 (1.10.x)

EPSS

Процентиль: 46%

0.00229

Низкий

CVE-2017-1000426

CVSS3: 6.1

ubuntu

около 8 лет назад

MapProxy version 1.10.3 and older is vulnerable to a Cross Site Scripting attack in the demo service resulting in possible information disclosure.

CVE-2017-1000426

CVSS3: 6.1

nvd

около 8 лет назад

MapProxy version 1.10.3 and older is vulnerable to a Cross Site Scripting attack in the demo service resulting in possible information disclosure.

GHSA-g4rw-82hq-8jpr

CVSS3: 6.1

github

больше 3 лет назад

MapProxy vulnerable to cross-site scripting in demo service

EPSS

Процентиль: 46%

0.00229

Низкий