Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
osgeo owslib vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2023-27476
OWSLib is a Python package for client programming with Open Geospatial Consortium (OGC) web service interface standards, and their related content models. OWSLib's XML parser (which supports both `lxml` and `xml.etree`) does not disable entity resolution, and could lead to a...
Osgeo Owslib
7.5
CVSSv3
CVE-2021-39371
An XML external entity (XXE) injection in PyWPS prior to 4.4.5 allows an malicious user to view files on the application server filesystem by assigning a path to the entity. OWSLib 0.24.1 may also be affected.
Osgeo Owslib 0.24.1
Osgeo Pywps
Debian Debian Linux 9.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started