VDB
EN
MEDIUM 6.1

PYSEC-2026-841

MapProxy vulnerable to cross-site scripting in demo service

상세

MapProxy version 1.11.1 and older are vulnerable to cross-site scripting in the demo service resulting in possible information disclosure. An incomplete fix was released in v[1.10.4](https://github.com/mapproxy/mapproxy/issues/322#issuecomment-518573169), and a complete fix was released in v[1.11.1](https://github.com/mapproxy/mapproxy/commit/436c8f489761d1b4ee22b2440b53cc96bbc28aea).

이 버전이 영향받나요?

사용 중인 패키지 버전을 입력하면 즉시 평가합니다.

영향 패키지

PyPI / mapproxy
최초 영향 버전: 0 수정 버전: 1.11.1
수정 pip install --upgrade 'mapproxy>=1.11.1'

참고