13 Layers
SHARE

The GET parameter “id” in WMS v1.0 is passed without filtering, which allows attackers to perform SQL injection. (CVSS:7.5) (Closing Update:2021-09-01)

13 Layers Managed Security Services