Filter
AND
AND
Xwiki Xwikiorg.xwiki.platform:xwiki-platform-attachment-api vulnerable to Missing Authorization on Attachment Move
8.1
First published (updated )
Xwiki XwikiImproper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection') in org.xwiki.platform:xwiki-platform-skin-ui
10
First published (updated )
Xwiki RenderingImproper Neutralization of Script in Attributes in XWiki (X)HTML renderers
First published (updated )
Xwiki XwikiExposure of Sensitive Information to an Unauthorized Actor in org.xwiki.platform:xwiki-platform-office-viewer
7.5
First published (updated )
Xwiki XwikiCode injection from view right on XWiki.AttachmentSelector in xwiki-platform
9.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Xwiki XwikiCross-site scripting (XSS) in xwiki-platform
7.7
First published (updated )
Xwiki XwikiCode injection in template provider administration in xwiki-platform
10
First published (updated )
Xwiki XwikiCode injection in xwiki-platform-web-templates
9.9
First published (updated )
Xwiki XwikiCode injection from view right on XWiki.ClassSheet in xwiki-platform
9.9
First published (updated )
Xwiki XwikiCode injection from account/view through VFS Tree macro in xwiki-platform
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Xwiki XwikiPage render failure due to broken translations in xwiki-platform
6.5
First published (updated )
Xwiki XwikiCode injection in org.xwiki.platform:xwiki-platform-attachment-ui
9.1
First published (updated )
Xwiki XwikiCode injection from view right using Invitation.InvitationCommon in xwiki-platform
9.9
First published (updated )
Xwiki XwikiCode injection in display method used in user profiles in xwiki-platform
10
First published (updated )
maven/org.xwiki.platform:xwiki-platform-distribution-warPrivilege escalation from view right on XWiki.Notifications.Code.LegacyNotificationAdministration in xwiki-platform
10
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Xwiki XwikiAsync and display macro allow displaying and interacting with any document in restricted mode
10
First published (updated )
Xwiki Xwikixwiki-platform-administration-ui vulnerable to privilege escalation
9.9
First published (updated )
Xwiki XwikiXWiki Commons are technical libraries common to several other top level XWiki projects. It is possib…
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Xwiki Xwikiorg.xwiki.platform:xwiki-platform-flamingo-theme-ui vulnerable to privilege escalation
9.9
First published (updated )
Xwiki XwikiData leak through a XAR import XXE attack in xwiki-platform-xar-model
7.7
First published (updated )
Xwiki XwikiImproper Neutralization of Directives in Dynamically Evaluated Code in org.xwiki.platform:xwiki-platform-panels-ui
10
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Xwiki XwikiXWiki Platform is a generic wiki platform. Starting in version 3.0-milestone-1, it's possible to exe…
5.4
First published (updated )
Xwiki XwikiXWiki Platform users may execute anything with superadmin right through comments and async macro
10
First published (updated )
Xwiki XwikiXWiki Platform vulnerable to privilege escalation via async macro and IconThemeSheet from the user profile
10
First published (updated )
Xwiki XwikiXWiki Platform allows unprivileged users to make arbitrary select queries using DatabaseListProperty and suggest.vm
6.5
First published (updated )
Xwiki XwikiXWiki Platform vulnerable to privilege escalation via properties with wiki syntax that are executed with wrong author
10
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Xwiki XwikiXWiki Platform vulnerable to Remote Code Execution in Annotations
10
First published (updated )
Xwiki Xwikiorg.xwiki.platform:xwiki-platform-flamingo-theme-ui Eval Injection vulnerability
10
First published (updated )
Xwiki Xwikiorg.xwiki.platform:xwiki-platform-store-filesystem-oldcore has Exposed Dangerous Method or Function
8.1
First published (updated )
Xwiki Xwikiorg.xwiki.platform:xwiki-platform-rendering-parser vulnerable to Improper Handling of Exceptional Conditions
6.5
First published (updated )
Xwiki XwikiXWiki-Platform vulnerable to stored Cross-site Scripting via the HTML displayer in Live Data
8.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Xwiki XwikiMissing Authorization in XWiki Platform
9.6
First published (updated )
Xwiki XwikiExposure of Private Personal Information to an Unauthorized Actor in xwiki-platform-rest-server
7.5
First published (updated )