CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-21621

GeoServer is an open source server that allows users to share and edit geospatial data. Prior to version 2.25.0, a reflected cross-site scripting (XSS) vulnerability exists in the WMS GetFeatureInfo HTML output format that enables a remote attacker to execute arbitrary JavaScript code in a victim's browser through specially crafted SLD_BODY parameters. This issue has been patched in version 2.25.0.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 12.4%

CVSS Severity

CVSS v3 Score 6.1

References

Products affected by CVE-2025-21621

Geoserver » Geoserver » Version: N/A

cpe:2.3:a:geoserver:geoserver:-
Geoserver » Geoserver » Version: 2.10

cpe:2.3:a:geoserver:geoserver:2.10
Geoserver » Geoserver » Version: 2.10.0

cpe:2.3:a:geoserver:geoserver:2.10.0
Geoserver » Geoserver » Version: 2.10.1

cpe:2.3:a:geoserver:geoserver:2.10.1
Geoserver » Geoserver » Version: 2.10.2

cpe:2.3:a:geoserver:geoserver:2.10.2
Geoserver » Geoserver » Version: 2.10.3

cpe:2.3:a:geoserver:geoserver:2.10.3
Geoserver » Geoserver » Version: 2.10.4

cpe:2.3:a:geoserver:geoserver:2.10.4
Geoserver » Geoserver » Version: 2.10.5

cpe:2.3:a:geoserver:geoserver:2.10.5
Geoserver » Geoserver » Version: 2.11

cpe:2.3:a:geoserver:geoserver:2.11
Geoserver » Geoserver » Version: 2.11.0

cpe:2.3:a:geoserver:geoserver:2.11.0
Geoserver » Geoserver » Version: 2.11.1

cpe:2.3:a:geoserver:geoserver:2.11.1
Geoserver » Geoserver » Version: 2.11.2

cpe:2.3:a:geoserver:geoserver:2.11.2
Geoserver » Geoserver » Version: 2.11.3

cpe:2.3:a:geoserver:geoserver:2.11.3
Geoserver » Geoserver » Version: 2.11.4

cpe:2.3:a:geoserver:geoserver:2.11.4
Geoserver » Geoserver » Version: 2.11.5

cpe:2.3:a:geoserver:geoserver:2.11.5
Geoserver » Geoserver » Version: 2.12

cpe:2.3:a:geoserver:geoserver:2.12
Geoserver » Geoserver » Version: 2.12.0

cpe:2.3:a:geoserver:geoserver:2.12.0
Geoserver » Geoserver » Version: 2.12.1

cpe:2.3:a:geoserver:geoserver:2.12.1
Geoserver » Geoserver » Version: 2.12.2

cpe:2.3:a:geoserver:geoserver:2.12.2
Geoserver » Geoserver » Version: 2.12.3

cpe:2.3:a:geoserver:geoserver:2.12.3
Geoserver » Geoserver » Version: 2.12.4

cpe:2.3:a:geoserver:geoserver:2.12.4
Geoserver » Geoserver » Version: 2.12.5

cpe:2.3:a:geoserver:geoserver:2.12.5
Geoserver » Geoserver » Version: 2.13

cpe:2.3:a:geoserver:geoserver:2.13
Geoserver » Geoserver » Version: 2.13.0

cpe:2.3:a:geoserver:geoserver:2.13.0
Geoserver » Geoserver » Version: 2.13.1

cpe:2.3:a:geoserver:geoserver:2.13.1
Geoserver » Geoserver » Version: 2.13.2

cpe:2.3:a:geoserver:geoserver:2.13.2
Geoserver » Geoserver » Version: 2.13.3

cpe:2.3:a:geoserver:geoserver:2.13.3
Geoserver » Geoserver » Version: 2.13.4

cpe:2.3:a:geoserver:geoserver:2.13.4
Geoserver » Geoserver » Version: 2.14

cpe:2.3:a:geoserver:geoserver:2.14
Geoserver » Geoserver » Version: 2.14.0

cpe:2.3:a:geoserver:geoserver:2.14.0
Geoserver » Geoserver » Version: 2.14.1

cpe:2.3:a:geoserver:geoserver:2.14.1
Geoserver » Geoserver » Version: 2.14.2

cpe:2.3:a:geoserver:geoserver:2.14.2
Geoserver » Geoserver » Version: 2.14.3

cpe:2.3:a:geoserver:geoserver:2.14.3
Geoserver » Geoserver » Version: 2.14.4

cpe:2.3:a:geoserver:geoserver:2.14.4
Geoserver » Geoserver » Version: 2.14.5

cpe:2.3:a:geoserver:geoserver:2.14.5
Geoserver » Geoserver » Version: 2.15

cpe:2.3:a:geoserver:geoserver:2.15
Geoserver » Geoserver » Version: 2.15.0

cpe:2.3:a:geoserver:geoserver:2.15.0
Geoserver » Geoserver » Version: 2.15.1

cpe:2.3:a:geoserver:geoserver:2.15.1
Geoserver » Geoserver » Version: 2.15.2

cpe:2.3:a:geoserver:geoserver:2.15.2
Geoserver » Geoserver » Version: 2.15.3

cpe:2.3:a:geoserver:geoserver:2.15.3
Geoserver » Geoserver » Version: 2.15.4

cpe:2.3:a:geoserver:geoserver:2.15.4
Geoserver » Geoserver » Version: 2.15.5

cpe:2.3:a:geoserver:geoserver:2.15.5
Geoserver » Geoserver » Version: 2.16

cpe:2.3:a:geoserver:geoserver:2.16
Geoserver » Geoserver » Version: 2.16.0

cpe:2.3:a:geoserver:geoserver:2.16.0
Geoserver » Geoserver » Version: 2.16.1

cpe:2.3:a:geoserver:geoserver:2.16.1
Geoserver » Geoserver » Version: 2.16.2

cpe:2.3:a:geoserver:geoserver:2.16.2
Geoserver » Geoserver » Version: 2.16.3

cpe:2.3:a:geoserver:geoserver:2.16.3
Geoserver » Geoserver » Version: 2.16.4

cpe:2.3:a:geoserver:geoserver:2.16.4
Geoserver » Geoserver » Version: 2.16.5

cpe:2.3:a:geoserver:geoserver:2.16.5
Geoserver » Geoserver » Version: 2.17

cpe:2.3:a:geoserver:geoserver:2.17
Geoserver » Geoserver » Version: 2.17.0

cpe:2.3:a:geoserver:geoserver:2.17.0
Geoserver » Geoserver » Version: 2.17.1

cpe:2.3:a:geoserver:geoserver:2.17.1
Geoserver » Geoserver » Version: 2.17.2

cpe:2.3:a:geoserver:geoserver:2.17.2
Geoserver » Geoserver » Version: 2.17.3

cpe:2.3:a:geoserver:geoserver:2.17.3
Geoserver » Geoserver » Version: 2.17.4

cpe:2.3:a:geoserver:geoserver:2.17.4
Geoserver » Geoserver » Version: 2.17.5

cpe:2.3:a:geoserver:geoserver:2.17.5
Geoserver » Geoserver » Version: 2.18

cpe:2.3:a:geoserver:geoserver:2.18
Geoserver » Geoserver » Version: 2.18.0

cpe:2.3:a:geoserver:geoserver:2.18.0
Geoserver » Geoserver » Version: 2.18.1

cpe:2.3:a:geoserver:geoserver:2.18.1
Geoserver » Geoserver » Version: 2.18.2

cpe:2.3:a:geoserver:geoserver:2.18.2
Geoserver » Geoserver » Version: 2.18.3

cpe:2.3:a:geoserver:geoserver:2.18.3
Geoserver » Geoserver » Version: 2.18.4

cpe:2.3:a:geoserver:geoserver:2.18.4
Geoserver » Geoserver » Version: 2.18.5

cpe:2.3:a:geoserver:geoserver:2.18.5
Geoserver » Geoserver » Version: 2.18.6

cpe:2.3:a:geoserver:geoserver:2.18.6
Geoserver » Geoserver » Version: 2.19

cpe:2.3:a:geoserver:geoserver:2.19
Geoserver » Geoserver » Version: 2.19.0

cpe:2.3:a:geoserver:geoserver:2.19.0
Geoserver » Geoserver » Version: 2.19.1

cpe:2.3:a:geoserver:geoserver:2.19.1
Geoserver » Geoserver » Version: 2.19.2

cpe:2.3:a:geoserver:geoserver:2.19.2
Geoserver » Geoserver » Version: 2.19.3

cpe:2.3:a:geoserver:geoserver:2.19.3
Geoserver » Geoserver » Version: 2.19.4

cpe:2.3:a:geoserver:geoserver:2.19.4
Geoserver » Geoserver » Version: 2.19.5

cpe:2.3:a:geoserver:geoserver:2.19.5
Geoserver » Geoserver » Version: 2.19.6

cpe:2.3:a:geoserver:geoserver:2.19.6
Geoserver » Geoserver » Version: 2.20

cpe:2.3:a:geoserver:geoserver:2.20
Geoserver » Geoserver » Version: 2.20.0

cpe:2.3:a:geoserver:geoserver:2.20.0
Geoserver » Geoserver » Version: 2.20.1

cpe:2.3:a:geoserver:geoserver:2.20.1
Geoserver » Geoserver » Version: 2.20.2

cpe:2.3:a:geoserver:geoserver:2.20.2
Geoserver » Geoserver » Version: 2.20.3

cpe:2.3:a:geoserver:geoserver:2.20.3
Geoserver » Geoserver » Version: 2.20.4

cpe:2.3:a:geoserver:geoserver:2.20.4
Geoserver » Geoserver » Version: 2.20.5

cpe:2.3:a:geoserver:geoserver:2.20.5
Geoserver » Geoserver » Version: 2.20.6

cpe:2.3:a:geoserver:geoserver:2.20.6
Geoserver » Geoserver » Version: 2.21

cpe:2.3:a:geoserver:geoserver:2.21
Geoserver » Geoserver » Version: 2.21.0

cpe:2.3:a:geoserver:geoserver:2.21.0
Geoserver » Geoserver » Version: 2.21.1

cpe:2.3:a:geoserver:geoserver:2.21.1
Geoserver » Geoserver » Version: 2.21.2

cpe:2.3:a:geoserver:geoserver:2.21.2
Geoserver » Geoserver » Version: 2.21.3

cpe:2.3:a:geoserver:geoserver:2.21.3
Geoserver » Geoserver » Version: 2.22

cpe:2.3:a:geoserver:geoserver:2.22
Geoserver » Geoserver » Version: 2.22.0

cpe:2.3:a:geoserver:geoserver:2.22.0
Geoserver » Geoserver » Version: 2.22.1

cpe:2.3:a:geoserver:geoserver:2.22.1
Geoserver » Geoserver » Version: 2.22.2

cpe:2.3:a:geoserver:geoserver:2.22.2
Geoserver » Geoserver » Version: 2.22.3

cpe:2.3:a:geoserver:geoserver:2.22.3
Geoserver » Geoserver » Version: 2.22.4

cpe:2.3:a:geoserver:geoserver:2.22.4
Geoserver » Geoserver » Version: 2.22.5

cpe:2.3:a:geoserver:geoserver:2.22.5
Geoserver » Geoserver » Version: 2.22.6

cpe:2.3:a:geoserver:geoserver:2.22.6
Geoserver » Geoserver » Version: 2.23.0

cpe:2.3:a:geoserver:geoserver:2.23.0
Geoserver » Geoserver » Version: 2.23.1

cpe:2.3:a:geoserver:geoserver:2.23.1
Geoserver » Geoserver » Version: 2.23.2

cpe:2.3:a:geoserver:geoserver:2.23.2
Geoserver » Geoserver » Version: 2.23.3

cpe:2.3:a:geoserver:geoserver:2.23.3
Geoserver » Geoserver » Version: 2.23.4

cpe:2.3:a:geoserver:geoserver:2.23.4
Geoserver » Geoserver » Version: 2.23.5

cpe:2.3:a:geoserver:geoserver:2.23.5
Geoserver » Geoserver » Version: 2.23.6

cpe:2.3:a:geoserver:geoserver:2.23.6
Geoserver » Geoserver » Version: 2.24.0

cpe:2.3:a:geoserver:geoserver:2.24.0
Geoserver » Geoserver » Version: 2.24.1

cpe:2.3:a:geoserver:geoserver:2.24.1
Geoserver » Geoserver » Version: 2.24.2

cpe:2.3:a:geoserver:geoserver:2.24.2
Geoserver » Geoserver » Version: 2.24.3

cpe:2.3:a:geoserver:geoserver:2.24.3
Geoserver » Geoserver » Version: 2.24.4

cpe:2.3:a:geoserver:geoserver:2.24.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-21621

Products

Pricing

Contact Us