Filter
Versions
15.0
55
14.0
46
14.5
39
15.6
24
15.0-rc1
12
13.0
11
14.10
11
14.4.0
9
14.10-rc1
8
14.0.0
7
14.4.4
7
14.4.3
6
15.6-rc1
6
2.3
6
1.0
5
13.1
5
15.1
5
15.1-rc1
5
15.7-rc1
5
3.1.1
5
0.9.793
4
12.0
4
12.7
4
13.5
4
13.9
4
14.6
4
3.0
4
3.0-milestone3
4
3.0.1
4
6.4
4
0.9.1252
3
0.9.543
3
0.9.790
3
0.9.840
3
1.8
3
13.1-rc1
3
13.10
3
14.5.0
3
2.4
3
3.0-rc1
3
3.1-milestone2
3
3.2-milestone3
3
3.5
3
5.0
3
6.3-milestone2
3
7.2
3
7.3
3
1.0-b1
2
1.0-b2
2
1.1
2
1.1-rc1
2
1.3
2
1.7
2
11.6
2
12.0.0
2
12.10
2
13.4
2
13.4.0
2
13.6
2
14.0-rc1
2
14.4.5
2
14.7
2
14.8
2
15.2
2
15.2-rc1
2
15.3
2
15.3-rc1
2
2.2-milestone1
2
2.4-milestone2
2
2.5
2
2.5-milestone2
2
3.0-milestone1
2
3.0-milestone2
2
3.0-milestone_2
2
3.1
2
3.1-milestone1
2
3.1-rc1
2
3.3
2
4.2
2
4.2-milestone3
2
4.3-milestone2
2
4.3.1
2
5.0-milestone1
2
5.3-milestone2
2
5.4
2
5.4.4
2
6.0
2
6.2
2
6.2-milestone1
2
6.2-milestone2
2
6.2.1
2
6.2.4
2
6.3
2
6.3-rc1
2
6.4-milestone3
2
7.2-milestone2
2
7.2-milestone3
2
8.1
2
1.0_b1
1
1.0_b2
1
1.1-milestone3
1
1.1-milestone4
1
1.1_rc1
1
1.3-rc1
1
1.5
1
1.8-rc1
1
1.8-rc2
1
1.9
1
1.9-milestone2
1
10.11.1
1
10.7
1
10.9
1
11.10.1
1
11.10.2
1
11.3.7
1
11.4
1
11.6-rc1
1
11.6.1
1
11.7-rc1
1
11.8
1
11.8-milestone1
1
11.8.1
1
12.10.10
1
12.10.11
1
12.10.2
1
12.10.3
1
12.10.5
1
12.10.6
1
12.4
1
12.5
1
12.6.4
1
12.6.6
1
12.7.1
1
12.8
1
12.9
1
12.9-rc1
1
13.0.0
1
13.10.1
1
13.10.2
1
13.10.4
1
13.10.8
1
13.2
1
13.3
1
13.4.2
1
13.4.4
1
13.4.6
1
13.5.0
1
13.7
1
13.9-rc1
1
14.10.8
1
14.2
1
14.3
1
14.4
1
14.4.1
1
14.7-rc1
1
14.9-rc1
1
15.5
1
15.5-rc1
1
15.7
1
15.9
1
16.0
1
16.0-rc-1
1
16.0.0
1
16.0.0-rc1
1
2.0
1
2.0-milestone2
1
2.2.1
1
2.3-milestone1
1
3.2-milestone2
1
3.3-milestone2
1
3.4
1
3.4-milestone-1
1
3.5-milestone1
1
3.5-rc-1
1
3.5.1
1
4.1-milestone2
1
4.1.1
1
4.2-milestone-3
1
4.3
1
4.3-rc1
1
4.5
1
5.0-milestone2
1
5.0.1
1
5.1
1
5.2
1
5.2-milestone2
1
5.2-rc1
1
5.3
1
6.0-milestone1
1
6.0-milestone2
1
6.0-rc1
1
6.0.1
1
6.1
1
6.1-milestone1
1
6.1-milestone2
1
6.1-rc1
1
6.3-milestone1
1
6.4-milestone2
1
6.4-rc1
1
6.4.1
1
7.0
1
7.2-rc1
1
7.3-milestone1
1
7.4
1
7.4.4
1
8.0
1
8.3
1
8.3-rc1
1
8.4
1
9.2
1
9.4
1
9.4-rc-1
1
9.4-rc1
1
9.6
1
9.7
1
XWikiXWiki.org XWiki SolrSearchMacros text Command Injection Remote Code Execution Vulnerability
First published (updated )
XWikiZDI-24-1697: XWiki.org XWiki SolrSearchMacros text Command Injection Remote Code Execution Vulnerability
First published (updated )
XWikiXWiki Platform has an SQL injection in getdocuments.vm with sort parameter
9.8
First published (updated )
maven/org.xwiki.platform:xwiki-platform-rest-serverXWiki Platform document history including authors of any page exposed to unauthorized actors
5.3
First published (updated )
maven/org.xwiki.platform:xwiki-platform-oldcoreXWiki Platform allows XSS through XClass name in string properties
9.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
maven/org.xwiki.platform:xwiki-platform-web-templatesIn XWiki Platform, payloads stored in content is executed when a user with script/programming right edit them
9.1
First published (updated )
maven/org.xwiki.platform:xwiki-platform-web-templatesXWiki Platform XSS through conflict resolution
9.1
First published (updated )
maven/org.xwiki.platform:xwiki-platform-search-uiXWiki Platform vulnerable to remote code execution from account via SearchSuggestConfigSheet
10
First published (updated )
XWikiXWiki Platform vulnerable to Cross-site Scripting through attachment filename in uploader
6.4
First published (updated )
XWikiXWiki Platform vulnerable to document deletion and overwrite from edit
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
maven/org.xwiki.platform:xwiki-platform-rendering-macro-includeXWiki programming rights may be inherited by inclusion
10
First published (updated )
maven/org.xwiki.platform:xwiki-platform-uiextension-apiXWiki Platform remote code execution from account through UIExtension parameters
10
EPSS
0.04%
First published (updated )
maven/org.xwiki.commons:xwiki-commons-velocityXWiki Commons missing escaping of `{` in Velocity escapetool allows remote code execution
10
EPSS
0.04%
First published (updated )
maven/org.xwiki.platform:xwiki-platform-realtime-uiXWiki Platform CSRF remote code execution through the realtime HTML Converter API
9.7
EPSS
0.04%
First published (updated )
maven/org.xwiki.platform:xwiki-platform-oldcoreXWiki Platform remote code execution from account via custom skins support
10
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
maven/org.xwiki.platform:xwiki-platform-scheduler-uiXWiki Platform CSRF remote code execution through scheduler job's document reference
9.1
EPSS
0.04%
First published (updated )
maven/org.xwiki.platform:xwiki-platform-scheduler-uiXWiki Platform CSRF in the job scheduler
5.4
EPSS
0.04%
First published (updated )
XWikiXWiki Platform: Remote code execution through space title and Solr space facet
10
EPSS
0.04%
First published (updated )
XWikiXWiki Platform: Remote code execution from edit in multilingual wikis via translations
10
EPSS
0.04%
First published (updated )
maven/org.xwiki.platform:xwiki-platform-search-uiXWiki Platform: Remote code execution as guest via DatabaseSearch
10
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
maven/org.xwiki.platform:xwiki-platform-oldcoreXWiki Platform: Privilege escalation (PR) from user registration through PDFClass
10
EPSS
0.04%
First published (updated )
XWikiXWiki Platform: Remote code execution from account via SearchSuggestSourceSheet
10
EPSS
0.04%
First published (updated )
maven/org.xwiki.platform:xwiki-platform-oldcoreXWiki Platform: Password hash might be leaked by diff once the xobject holding them is deleted
6.8
EPSS
0.04%
First published (updated )
maven/org.xwiki.platform:xwiki-platform-distribution-warXWiki Denial of Service attack through attachments
7.5
EPSS
0.05%
First published (updated )
XWikiXWiki has no right protection on rollback action
8.8
EPSS
0.06%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
maven/org.xwiki.platform:xwiki-platform-administration-uiXWiki Remote Code Execution vulnerability via user registration
10
EPSS
0.58%
First published (updated )
maven/org.xwiki.platform:xwiki-platform-index-tree-macroVelocity execution without script right through tree macro
8.3
First published (updated )
XWikiXWiki Platform remote code execution/programming rights with configuration section from any user account
10
First published (updated )
XWikiXWiki Platform XSS/CSRF Remote Code Execution in XWiki.ConfigurableClass
9.6
First published (updated )
XWikiXWiki Platform RCE from account through SearchAdmin
10
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.