All 2 CVE vulnerabilities found in org.geoserver.web:gs-web-app, with AI-generated Chinese analysis, references, and POCs.
Vendor: geoserver
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-58175 | GeoServer has a Server-Side Request Forgery (SSRF) Vulnerability in its XML Entity Resolution CWE-20 | 6.5 | Medium | 2026-06-18 |
| CVE-2025-52465 | GeoServer has an arbitrary file write vulnerability in its Master Password Dump Page CWE-73 | 7.2 | High | 2026-06-18 |
All 2 known CVE vulnerabilities affecting org.geoserver.web:gs-web-app with full Chinese analysis, references, and POCs where available.