GeoNode is vulnerable to an XML External Entity (XXE) injection #10462
Comments
afabiani
added
security
afabiani
added a commit
that referenced
this issue
Dec 21, 2022
12 tasks
afabiani
added a commit
that referenced
this issue
Dec 22, 2022
…injection (#10463) (#10466) Co-authored-by: Alessio Fabiani <[email protected]>
afabiani
added a commit
that referenced
this issue
Dec 22, 2022
…injection (#10463) (#10467) Co-authored-by: Alessio Fabiani <[email protected]>
afabiani
added a commit
that referenced
this issue
Dec 22, 2022
afabiani
added a commit
that referenced
this issue
Dec 22, 2022
…th expression (#10465) (#10468) * [Fixes #10462] GeoNode is vulnerable to an XML External Entity (XXE) injection * [Fixes #10464] Fix code scanning alert - Uncontrolled data used in path expression Co-authored-by: Alessio Fabiani <[email protected]>
afabiani
added a commit
that referenced
this issue
Dec 22, 2022
…th expression (#10465) (#10469) * [Fixes #10462] GeoNode is vulnerable to an XML External Entity (XXE) injection * [Fixes #10464] Fix code scanning alert - Uncontrolled data used in path expression Co-authored-by: Alessio Fabiani <[email protected]>
alaeddine-farhat
pushed a commit
to alaeddine-farhat/geonode
that referenced
this issue
Jun 7, 2023
…d in path expression (GeoNode#10465) (GeoNode#10468) * [Fixes GeoNode#10462] GeoNode is vulnerable to an XML External Entity (XXE) injection * [Fixes GeoNode#10464] Fix code scanning alert - Uncontrolled data used in path expression Co-authored-by: Alessio Fabiani <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Issue: XML External Entity (XXE) injection in GeoServer style upload functionality (GHSL-2022-129)
The text was updated successfully, but these errors were encountered: