xwiki - CVE CyberSecurity Database News

Sep 1, 2023 Exploit xwiki xwiki-platform

CVE-2023-41046: XWiki Platform Unrestricted Velocity Code Execution Vulnerability

XWiki Platform is a versatile wiki platform that provides runtime services for applications built on it. A security vulnerability, identified as CVE-2023-41046, has been found

Aug 24, 2023 CSRF xwiki xwiki-platform

CVE-2023-40573 - XWiki Platform Remote Code Execution Vulnerability Affecting Scheduled Jobs

---- XWiki Platform (version<=14.10.8 and version < 15.4RC1) is found vulnerable to a security flaw with the Common Vulnerabilities and

CVE-2023-29516: Arbitrary Code Execution Vulnerability in XWiki Platform

Apr 19, 2023 Exploit xwiki xwiki-platform

CVE-2023-29516: Arbitrary Code Execution Vulnerability in XWiki Platform

A critical vulnerability has been discovered in XWiki Platform that allows any user with view rights on XWiki.AttachmentSelector to execute arbitrary Groovy, Python, or

Apr 19, 2023 Exploit xwiki xwiki-platform

CVE-2023-29525 - XWiki Platform's "since" Parameter Vulnerability: Code Injection, Privilege Escalation, and Code Execution

XWiki Platform is a widely used, generic wiki platform that offers runtime services for various applications built on top of it. Recently, a vulnerability has

Apr 16, 2023 XSS xwiki xwiki-platform

CVE-2023-29508 - XWiki Commons Stored XSS Vulnerability via Live Data Macro and Its Fixes in Versions 14.10, 14.4.7, and 13.10.11

XWiki Commons, a collection of technical libraries, is a critical component of many top-level XWiki projects. These libraries not only support the overall structure and