{"id":"CVE-2026-44672","summary":"mapfish-print: Remote Code Injection (RCE) in Dynamic table","details":"mapfish-print is a component of MapFish for printing templated cartographic maps. From 3.23.0 to before 3.28.28, 3.30.30, 3.31.22, 3.33.14, and 4.0.3, the attacker can execute arbitrary code  in Dynamic table without being authenticated. This vulnerability is fixed in 3.28.28, 3.30.30, 3.31.22, 3.33.14, and 4.0.3.","aliases":["GHSA-q7m6-wpvf-mvwx"],"modified":"2026-07-08T08:12:34.797713983Z","published":"2026-05-28T14:35:29.378Z","database_specific":{"cna_assigner":"GitHub_M","cwe_ids":["CWE-94"],"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/44xxx/CVE-2026-44672.json"},"references":[{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/44xxx/CVE-2026-44672.json"},{"type":"ADVISORY","url":"https://github.com/mapfish/mapfish-print/security/advisories/GHSA-q7m6-wpvf-mvwx"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-44672"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/mapfish/mapfish-print","events":[{"introduced":"f90934635ebd06a6cb904e9adf8e80c2ce566609"},{"fixed":"ead60e1d438a6a8e04cff6e058017447ffe71219"},{"introduced":"0"},{"fixed":"b31b85154dc2c399b40df36aa40268c13975f1fb"},{"fixed":"37629e0fa7df40e33c932cbe46b29366c4b14eb1"},{"fixed":"99546fc6e2d6fff9e48fe1ccb6b9dc66de01e75c"},{"introduced":"b4183098cf4df8e3baffdcb2757bb1f0a6c76853"},{"fixed":"e5fc8c066664705c4754df7df856fe18d95849cf"}],"database_specific":{"extracted_events":[{"introduced":"3.23.0"},{"fixed":"3.28.28"},{"introduced":"3.29.0"},{"fixed":"3.30.30"},{"introduced":"3.31.0"},{"fixed":"3.31.21"},{"introduced":"3.34.0"},{"fixed":"4.0.3"},{"introduced":"3.32.0"},{"fixed":"3.33.14"}],"source":"AFFECTED_FIELD"}}],"versions":["3.30.29","3.28.27","3.33.13","4.0.2","3.30.28","4.0.1","3.31.20","3.33.12","3.28.26","4.0.0","3.30.27","3.28.25","3.33.11","3.31.19","3.33.10","3.30.26","3.28.24","3.31.18","3.33.9","3.30.25","3.28.23","3.31.17","3.33.8","3.31.16","3.30.24","3.33.7","3.28.22","3.33.6","3.30.23","3.28.21","3.33.5","3.31.15","3.28.20","3.31.14","3.33.4","3.30.22","3.33.3","3.28.19","3.31.13","3.30.21","3.33.2","3.30.20","3.28.18","3.33.1","3.31.12","3.30.19","3.33.0","3.28.17","3.31.11","3.32.0","3.30.18","3.28.16","3.31.10","3.30.17","3.28.15","3.31.5","3.31.9","3.30.16","3.28.14","3.31.8","3.28.13","3.31.7","3.30.15","3.28.12","3.30.14","3.31.6","3.30.13","3.28.11","3.31.4","3.30.12","3.31.3","3.31.2","3.28.10","3.31.1","3.30.11","3.28.9","3.28.8","3.30.10","3.30.7","3.30.6","3.28.6","3.30.5","3.30.3","3.30.2","3.30.1","3.30.0","release/3.23","3.23.0","3.28.5","release/3.28.4","3.28.4","3.28.3","release/3.27.0","3.27.0","release/3.28.1","3.28.1","release/3.28.0","3.28.0","release/3.25.0","release/3.24.0","3.24.0","release/3.23.0"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-44672.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V4","score":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"}]}