Lucene search
K

26 matches found

Vulnrichment
Vulnrichment
added 2024/02/21 4:52 p.m.23 views

CVE-2024-26138 License information is public, exposing instance id and license holder details

The XWiki licensor application, which manages and enforce application licenses for paid extensions, includes the document Licenses.Code.LicenseJSON that provides information for admins regarding active licenses. This document is public and thus exposes this information publicly. The information...

5.3CVSS6.4AI score0.00492EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/12/15 12:0 a.m.5 views

XWiki Platform Information Disclosure Vulnerability

XWiki Platform is the XWiki Foundation's suite of Wiki platforms for creating Web collaboration applications. An information disclosure vulnerability exists in XWiki Platform, which stems from a Solr-based search in XWiki disclosing a user's e-mail address even if e-mail address obfuscation is...

5.3CVSS6.3AI score0.59119EPSS
Exploits0References4
NVD
NVD
added 2023/11/07 4:17 a.m.35 views

CVE-2023-38509

XWiki Platform is a generic wiki platform. In org.xwiki.platform:xwiki-platform-livetable-ui starting with version 3.5-milestone-1 and prior to versions 14.10.9 and 15.3-rc-1, the mail obfuscation configuration was not fully taken into account and is was still possible by obfuscated emails. This...

4.3CVSS4.4AI score0.00661EPSS
Exploits1References4
CVE
CVE
added 2023/07/27 6:53 p.m.122 views

CVE-2023-38509

CVE-2023-38509 affects XWiki Platform’s livetable-ui component (org.xwiki.platform:xwiki-platform-livetable-ui). Versions 3.5-milestone-1 through but not including 14.10.9 and 15.3-rc-1 expose a mail obfuscation configuration that was not fully applied, allowing obfuscated emails to be accessed. ...

4.3CVSS4.4AI score0.00661EPSS
Exploits1References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2008/10/17 12:0 a.m.15 views

Email Address Obfuscated Within HTML Comments

Binary data 4710.prm...

7.3AI score
Exploits0
securityvulns
securityvulns
added 2006/04/14 12:0 a.m.89 views

RevoBoard [email] tag XSS

Revoboard php is based on an earlier version of PunBB. I know for sure that this affects v1.8. The email tag parser obsfucates emails to stop harvesters. To execute code, do this: php $code = ''" onMouseover="javascript:alert/xss/"'; for$a=0;$astrlen$code;$a++ $c = ordsubstr$code,$a,1; $c +=...

1.5AI score
Exploits0
Rows per page
Query Builder