Vulnerability Database

org.geoserver / gs-wfs

• You can search for specific versions with https://synscan.net/product/gs--wfs/1.2.3

Title	Severity	Exploit	Date	Affected Version
GeoServer vulnerable to SSRF in TestWfsPost for specific targets, e.g. PHP + Nginx	High		Jun 10, 2025	>= 1.0.0 < 2.24.4 >= 2.25.0 < 2.25.2
CVE-2025-30220	High		Jun 10, 2025	== 2.27.0 >= 2.27.0 < 2.27.1 >= 2.26.0 < 2.26.3 < 2.25.7
CVE-2024-29198	High		Jun 10, 2025	>= 2.0.0 < 2.24.4 >= 2.25.0 < 2.25.2
CVE-2024-36401	Critical		Jul 1, 2024	>= 2.24.0 < 2.24.4 >= 2.25.0 < 2.25.2 < 2.23.6
CVE-2023-35042	Critical		Jun 12, 2023	< 2.18.6 >= 2.19.0 < 2.19.6 >= 2.20.0 < 2.20.4