CVE-2024-41118 | opengeos streamlit-geospatial 7_ get_layers url server-side request forgery (GHSL-2024-100)

CVE-2024-41118 | opengeos streamlit-geospatial 7_ get_layers url server-side request forgery (GHSL-2024-100)

A vulnerability was found in opengeos streamlit-geospatial. It has been classified as critical. Affected is the function get_layers of the file pages/7_????_Web_Map_Service.py. The manipulation of the argument url leads to server-side request forgery. This vulnerability is traded as CVE-2024-41118. It is possible to launch the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.