Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
postgis postgis vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2017-18359
PostGIS 2.x prior to 2.3.3, as used with PostgreSQL, allows remote malicious users to cause a denial of service via crafted ST_AsX3D function input, as demonstrated by an abnormal server termination for "SELECT ST_AsX3D('LINESTRING EMPTY');" because empty geom...
Postgis Postgis
Debian Debian Linux 8.0
Debian Debian Linux 9.0
9.8
CVSSv3
CVE-2023-25157
GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. GeoServer includes support for the OGC Filter expression language and the OGC Common Query Language (CQL) as part of the Web Feature Service (WFS) and Web Map Service ...
Osgeo Geoserver
8 Github repositories
NA
CVE-2013-7262
SQL injection vulnerability in the msPostGISLayerSetTimeFilter function in mappostgis.c in MapServer prior to 6.4.1, when a WMS-Time service is used, allows remote malicious users to execute arbitrary SQL commands via a crafted string in a PostGIS TIME filter.
Umn Mapserver 6.0.0
Umn Mapserver 5.6.7
Umn Mapserver 5.2.3
Osgeo Mapserver 4.2.0
Osgeo Mapserver 4.4.0
Osgeo Mapserver 4.6.0
Osgeo Mapserver 4.8.0
Osgeo Mapserver 4.10.0
Osgeo Mapserver 4.10.4
Osgeo Mapserver 4.10.2
Osgeo Mapserver 4.10.1
Osgeo Mapserver 4.10.3
Osgeo Mapserver 4.10.5
Osgeo Mapserver 5.0.0
Osgeo Mapserver 5.2.0
Osgeo Mapserver 5.2.1
Osgeo Mapserver 5.4.0
Osgeo Mapserver 5.4.2
Osgeo Mapserver 5.4.1
Osgeo Mapserver 5.6.0
Osgeo Mapserver 5.6.1
Osgeo Mapserver 5.6.3
9.8
CVSSv3
CVE-2023-25158
GeoTools is an open source Java library that provides tools for geospatial data. GeoTools includes support for OGC Filter expression language parsing, encoding and execution against a range of datastore. SQL Injection Vulnerabilities have been found when executing OGC Filters wit...
Geotools Geotools
4 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30078
CVE-2024-37896
code injection
CVE-2024-3080
CVE-2024-5172
cross-site request forgery
CVE-2024-6111
firmware
CVE-2024-38504
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started