Lucene search
K

4 matches found

OpenVAS
OpenVAS
added 2022/09/14 12:0 a.m.20 views

XWiki 8.0 < 13.10.5, 14.0 < 14.3 User Registration Vulnerability (GHSA-h5j3-5x63-p8jv)

Xwiki is prone to a user registration vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:xwiki:xwiki"; ifdescription...

8.5CVSS6.8AI score0.00687EPSS
Exploits0References1
OSV
OSV
added 2022/09/08 5:25 p.m.29 views

CVE-2022-36093 XWiki Platform Web Templates vulnerable to Unauthorized User Registration Through the Distribution Wizard

XWiki Platform Web Templates are templates for XWiki Platform, a generic wiki platform. By passing a template of the distribution wizard to the xpart template, user accounts can be created even when user registration is disabled. This also circumvents any email verification. Before versions 14.2...

8.5CVSS6.8AI score0.00687EPSS
Exploits0References5
Cvelist
Cvelist
added 2022/09/08 5:25 p.m.51 views

CVE-2022-36093 XWiki Platform Web Templates vulnerable to Unauthorized User Registration Through the Distribution Wizard

XWiki Platform Web Templates are templates for XWiki Platform, a generic wiki platform. By passing a template of the distribution wizard to the xpart template, user accounts can be created even when user registration is disabled. This also circumvents any email verification. Before versions 14.2...

8.5CVSS8.7AI score0.00687EPSS
Exploits0References3
CVE
CVE
added 2022/09/08 5:25 p.m.86 views

CVE-2022-36093

CVE-2022-36093 affects XWiki Platform Web Templates. An attacker can create user accounts by sending a distribution-wizard template to the xpart template, even when user registration is disabled, bypassing email verification. The issue can also allow write access on some wiki configurations, and ...

8.5CVSS7.6AI score0.00687EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder