Latest version: v4.4.1
| CVE/PVE | Vulnerability ID | Advisory | Affected versions | Severity | Severity Score |
|---|---|---|---|---|---|
| CVE-2023-28442 | 63696 |
Geonode before 4.1.0 is vulnerable to path traversal. https://github… |
|
MEDIUM | 5.3 |
| CVE-2023-26043 | 59545 |
GeoNode is an open source platform that facilitates the creation, sha… |
|
MEDIUM | 6.5 |
| CVE-2023-42439 | 63695 |
Geonode before 4.1.3 is vulnerable to Server-side Request Forgery (SS… |
|
MEDIUM | 6.5 |
| CVE-2023-40017 | 63992 |
Geonode before 4.2.0 is affected by a Server Side Request Forgery (SS… |
|
HIGH | 7.5 |
| PVE-2021-38558 | 38558 |
Geonode 2.8.1 includes a fix for a cross-site scripting vulnerability… |
|
- | - |
| CVE-2019-12387 | 42970 |
Geonode 2.10 updates 'twisted' to v19.2.1 to include security fixes. |
|
MEDIUM | 6.1 |
| CVE-2019-12781 | 37877 |
Geonode 2.10 updates 'django' to v1.11.22 to include a security fix. |
|
MEDIUM | 5.3 |
| PVE-2021-37040 | 42971 |
Geonode 2.10 updates 'twisted' to v19.2.1 to include security fixes. |
|
HIDDEN | X.Y |
| CVE-2018-20060 | 42969 |
Geonode 2.10 updates 'urllib3' to v1.24.2 to include security fixes. |
|
CRITICAL | 9.8 |
| CVE-2019-11324 | 42968 |
Geonode 2.10 updates 'urllib3' to v1.24.2 to include security fixes. |
|
HIGH | 7.5 |