CNNVD-202602-1057 Information
Feb 06, 2026
cve
CNNVD ID
CNNVD-202602-1057
Related CVE
- CNNVD Published: 2026-02-06
Description (Chinese)
TYDAC AG MAP+是瑞士TYDAC公司的一个地理信息系统平台。 TYDAC AG MAP+ 3.4.0版本存在安全漏洞,该漏洞源于PDF导出功能存在反射型跨站脚本,可能导致未经验证的攻击者通过特制恶意链接,在受害者环境中执行任意JavaScript。
Description (English)
TYDAC AG MAP+ is a GIS platform for TYDAC Switzerland. There is a security loophole in version TYDAC AG MAP+ 3.4.0, which stems from the reflective cross-site script of the PDF export function, which may lead to the unauthorized assailants to enforce any JavaScript in the victim ’ s environment through a specially created malicious link.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
TYDAC
Published
2026-02-06
Last Modified
2026-02-24
References
https://www.redguard.ch/blog/2026/02/05/advisory-tydac-mapplus/ https://www.tydac.ch/en/mapplus/
Share on: