Filter
AND
-Infinity
0
Trending
maven/org.xwiki.platform:xwiki-platform-notifications-uiData leak of notification filters of users in XWiki Platform
5.3
First published (updated )
maven/org.xwiki.platform:xwiki-platform-notifications-uiMissing checks for notification filter preferences editions in XWiki Platform
6.5
First published (updated )
maven/org.xwiki.platform:xwiki-platform-rest-serverXWiki Platform document history including authors of any page exposed to unauthorized actors
5.3
First published (updated )
XwikiXWiki Platform vulnerable to Cross-site Scripting through attachment filename in uploader
6.4
First published (updated )
XwikiXWiki Platform vulnerable to document deletion and overwrite from edit
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
maven/org.xwiki.platform:xwiki-platform-scheduler-uiXWiki Platform CSRF in the job scheduler
5.4
EPSS
0.04%
First published (updated )
maven/org.xwiki.platform:xwiki-platform-oldcoreXWiki Platform: Password hash might be leaked by diff once the xobject holding them is deleted
6.8
EPSS
0.04%
First published (updated )
maven/com.xwiki.licensing:application-licensing-licensor-uiLicense information is public, exposing instance id and license holder details
5.3
EPSS
0.04%
First published (updated )
XwikiXWiki Platform Solr search discloses email addresses of users
5.3
First published (updated )
maven/org.xwiki.platform:xwiki-platform-oldcoreorg.xwiki.platform:xwiki-platform-oldcore may leak data through deleted and re-created documents
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
maven/org.xwiki.platform:xwiki-platform-oldcoreVelocity execution without script rights in Xwiki platform
6.3
First published (updated )
maven/org.xwiki.platform:xwiki-platform-livetable-uiXWiki Platform's obfuscated email addresses should not be sorted
4.3
First published (updated )
XwikiXWiki Platform's tags on non-viewable pages can be revealed to users
4.3
First published (updated )
maven/org.xwiki.platform:xwiki-platform-web-templatesUsers can be created even when registration is disabled without validation via the template macro in xwiki-platform
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
maven/org.xwiki.platform:xwiki-platform-localization-source-wikiPage render failure due to broken translations in xwiki-platform
6.5
First published (updated )
Xwikiorg.xwiki.platform:xwiki-platform-security-authentication-default XSS with authenticated endpoints
6.1
First published (updated )
XwikiURL Redirection to Untrusted Site ('Open Redirect') in org.xwiki.platform:xwiki-platform-oldcore
6.1
First published (updated )
XwikiUnauthenticated user can have information about hidden users on subwikis through uorgsuggest.vm
5.3
First published (updated )
XwikiXWiki Platform is a generic wiki platform. Starting in version 3.0-milestone-1, it's possible to exe…
5.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
XwikiXWiki Platform allows unprivileged users to make arbitrary select queries using DatabaseListProperty and suggest.vm
6.5
First published (updated )
Xwikiorg.xwiki.platform:xwiki-platform-rendering-parser vulnerable to Improper Handling of Exceptional Conditions
6.5
First published (updated )
XwikiExposure of Sensitive Information to an Unauthorized Actor in org.xwiki.platform:xwiki-platform-livetable-ui
5.3
First published (updated )
XwikiMissing Authorization in User#setDisabledStatus in org.xwiki.platform:xwiki-platform-oldcore
4.9
First published (updated )
XwikiPlaintext storage of password in org.xwiki.platform:xwiki-platform-security-authentication-default
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
XwikiXWiki Cross-Site Request Forgery (CSRF) for actions on tags
4.3
First published (updated )
XWiki CommonsArbitrary file access through XML parsing in org.xwiki.commons:xwiki-commons-xml
4.9
First published (updated )
XwikiUnauthenticated user can list hidden document from multiple velocity templates
5.3
First published (updated )
XwikiUnauthenticated user can retrieve the list of users through uorgsuggest.vm
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.