GeoServer has a Reflected Cross-Site Scripting (XSS) vulnerability in its WMS GetFeatureInfo HTML format

Moderate severity GitHub Reviewed Published Nov 25, 2025 in geoserver/geoserver • Updated Nov 27, 2025

No open alerts for this advisory

Give feedback on Dependabot alerts