CVE-2023-25157 & CVE-2023-25158: SQLi Bugs in GeoTools & GeoServer
A now-patched security flaw in the GeoTools JavaScript module and GeoServer could be abused by a remote adversary to view, add, modify, or delete information in the back-end database. “GeoServer...