MEDIUM 6.3 PyPI
GHSA-hw9r-6m78-w6h3 · CVE-2026-39922, PYSEC-2026-61 GeoNode contains a server-side request forgery vulnerability in the service registration endpoint
Modified: 6/8/2026
package
PyPI / geonode
pkg:pypi/geonode
MEDIUM 6.5 PyPI
GHSA-mcmc-c59m-pqq8 · CVE-2023-26043, PYSEC-2023-15 GeoServer style upload functionality vulnerable to XML External Entity (XXE) injection
Modified: 11/20/2024
HIGH 7.5 PyPI
GHSA-pxg5-h34r-7q8p · CVE-2023-42439, PYSEC-2023-176 GeoNode vulnerable to SSRF Bypass to return internal host data
Modified: 9/20/2024
HIGH 7.5 PyPI
GHSA-rmxg-6qqf-x8mr · CVE-2023-40017, PYSEC-2023-269 GeoNode Server Side Request forgery
Modified: 11/21/2024
— PyPI
PYSEC-2023-15 · CVE-2023-26043, GHSA-mcmc-c59m-pqq8 Modified: 11/8/2023
MEDIUM 6.5 PyPI
PYSEC-2023-176 · CVE-2023-42439, GHSA-pxg5-h34r-7q8p Modified: 10/9/2025
HIGH 7.5 PyPI
PYSEC-2023-269 · CVE-2023-40017, GHSA-rmxg-6qqf-x8mr Modified: 11/21/2024
MEDIUM 6.3 PyPI
PYSEC-2026-61 · CVE-2026-39922, GHSA-hw9r-6m78-w6h3 Modified: 5/20/2026