CVE-2020-15231

Summary

In mapfish-print before version 3.24, a user can use the JSONP support to do a Cross-site scripting.

Affected Software

VendorProductVersion RangeStatus
mapfishmapfish-print< 3.24affected

Weaknesses

  • CWE-79: CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

ADP Enrichment

CVE Program Container

Additional References

References