Lucene search

K

CVE-2023-27479

🗓️ 07 Mar 2023 19:12:15Reported by GitHub_MType 
cve
 cve
🔗 web.nvd.nist.gov👁 25 Views

XWiki Platform allows arbitrary code execution due to improper UIX parameter escaping. Upgrade to patched version or manually edit wiki page

Show more
Related
Detection
Affected
Refs
Nvd
Vulners
Node
xwikixwikiRange6.313.10.11
OR
xwikixwikiRange14.014.4.7
OR
xwikixwikiRange14.514.10
OR
xwikixwikiMatch6.3-
OR
xwikixwikiMatch6.3milestone1
OR
xwikixwikiMatch6.3milestone2
[
  {
    "vendor": "xwiki",
    "product": "xwiki-platform",
    "versions": [
      {
        "version": ">= 6.3-milestone-2, < 13.10.11",
        "status": "affected"
      },
      {
        "version": ">= 14.0.0, < 14.4.7",
        "status": "affected"
      },
      {
        "version": ">= 14.5.0, < 14.10-rc-1",
        "status": "affected"
      }
    ]
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
07 Mar 2023 19:15Current
9.6High risk
Vulners AI Score9.6
CVSS39.9
EPSS0.002
25
.json
Report