27Tem
CVE-2024-41118 | opengeos streamlit-geospatial 7_ get_layers url server-side request forgery (GHSL-2024-100)
A vulnerability was found in opengeos streamlit-geospatial. It has been classified as critical. Affected is the functionget_layers
of the file pages/7_????_Web_Map_Service.py. The manipulation of the argument url leads to server-side request forgery.
This vulnerability is traded as CVE-2024-41118. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to apply a patch to fix this issue.