OSGeo (GeoServer) Data Breach
OSGeo (GeoServer) experienced a data breach that was reported on July 15, 2024. OSGeo GeoServer GeoTools contains an improper neutralization of directives in dynamically evaluated code vulnerability due to unsafely evaluating property names as XPath expressions. This allows unaut
Key Facts
- Organization
- OSGeo (GeoServer)
- Date Reported
- July 15, 2024
- Incident Type
- web app exploit
- Industry
- Technology
- Severity Score
- 5/10
- Confidence Level
- high
- Tags
Source
View original source - External link to primary source documentation
Understanding web app exploit Incidents
Web application exploits target vulnerabilities in websites and APIs. Secure development practices, WAFs, and penetration testing protect against these attacks.