Vulnerability — CVE-2020-15500

CVE-2020-15500

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2020-15500
Description:: An issue was discovered in server.js in TileServer GL through 3.0.0. The content of the key GET parameter is reflected unsanitized in an HTTP response for the application's main page, causing reflected XSS.
Last updated date:: 11/10/2022

Type:: exploit
Confidence:: HIGH
Date of publishing:: 04/15/2021
Reference url to background: https://github.com/maptiler/tileserver-gl/issues/461

Type:: exploit
Confidence:: HIGH
Date of publishing:: 11/10/2022
Reference url to background: http://packetstormsecurity.com/files/162193/Tileserver-gl-3.0.0-Cross-Site-Scripting.html