Security Advisory

CVE-2026-27818

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-26 00:02:45

Last updated 2026-02-26 15:16:30

Assigner GitHub_M

State PUBLISHED

Description

TerriaJS-Server is a NodeJS Express server for TerriaJS, a library for building web-based geospatial data explorers. A validation bug in versions prior to 4.0.3 allows an attacker to proxy domains not explicitly allowed in the `proxyableDomains` configuration. Version 4.0.3 fixes the issue.

← Browse all CVEs View on cve.org ↗