Advisories for Maven/Org.mapfish.print/Print-Lib package

The attacker can execute arbitrary code without being authenticated

In mapfish-print, an attacker can run an XML External Entity (XXE) attack with the provided SDL style.

In mapfish-print, a user can use the JSONP support to do a Cross-site scripting.