Lucene search

CVE-2022-41936

🗓️ 22 Nov 2022 01:34:15Reported by GoogleType

osv🔗 osv.dev👁 10 Views

XWiki Platform modifications endpoint exposes unauthorized user information

Reporter	Title	Published	Views	Family All 8
Prion	Design/Logic Flaw	22 Nov 202201:15	–	prion
Github Security Blog	Exposure of Private Personal Information to an Unauthorized Actor in org.xwiki.platform:xwiki-platform-rest-server	21 Nov 202223:25	–	github
Cvelist	CVE-2022-41936 Exposure of Private Personal Information to an Unauthorized Actor in xwiki-platform-rest-server	22 Nov 202200:00	–	cvelist
CVE	CVE-2022-41936	22 Nov 202201:15	–	cve
NVD	CVE-2022-41936	22 Nov 202201:15	–	nvd
OpenVAS	XWiki 8.1 < 13.10.8, 14.x < 14.4.3, 14.5.x < 14.6 Exposure of Private Information Vulnerability (GHSA-p88w-fhxw-xvcc)	24 Nov 202200:00	–	openvas
OSV	Exposure of Private Personal Information to an Unauthorized Actor in org.xwiki.platform:xwiki-platform-rest-server	21 Nov 202223:25	–	osv
CNVD	XWiki Platform information leakage vulnerability	24 Nov 202200:00	–	cnvd

Source	Link
github	www.github.com/xwiki/xwiki-platform/security/advisories/GHSA-p88w-fhxw-xvcc
jira	www.jira.xwiki.org/browse/XWIKI-19997
github	www.github.com/xwiki/xwiki-platform/commit/38dc1aa1a4435f24d58f5b8e4566cbcb0971f8ff

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

22 Nov 2022 01:15Current

7.5High risk

Vulners AI Score7.5

CVSS37.5

EPSS0.00398