CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Terria: >> Terriajs-Server Security Vulnerabilities

CVE-2026-27818

TerriaJS-Server is a NodeJS Express server for TerriaJS, a library for building web-based geospatial data explorers. A validation bug in versions prior to 4.0.3 allows an attacker to proxy domains not explicitly allowed in the `proxyableDomains` configuration. Version 4.0.3 fixes the issue.

CVSS Score

7.5

EPSS Score

0.001

Published

2026-02-26

Page 1

Vulnerabilities

Vulnerable Software

Terria: >> Terriajs-Server Security Vulnerabilities

Products

Pricing

Contact Us