CVE-2021-32620
XWiki Platform contains a vulnerability (CVE-2021-32620) where a user disabled on a wiki via email verification can re-activate themselves by following the activation link. Affected versions are prior to 11.10.13, 12.6.7, and 12.10.2; it has been fixed in 11.10.13, 12.6.7, 12.10.2, and 13.0. A ma...