3 matches found
CVE-2023-46732
creationtimestamp| type| source ---|---|--- 2023-11-06 22:26:03+00:00| seen| https://t.me/cibsecurity/73637...
CVE-2023-46732
XWiki Platform is vulnerable to reflected cross-site scripting (RXSS) via the rev parameter used in the content menu. An attacker enticing a user to visit a crafted link could execute actions as that user, including Groovy remote code execution for users with programming rights, potentially compr...
CVE-2023-46732 Reflected Cross-site scripting through revision parameter in content menu in XWiki Platform
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. XWiki is vulnerable to reflected cross-site scripting RXSS via the rev parameter that is used in the content of the content menu without escaping. If an attacker can convince a user to visit a...