CVE-2022-41927
XWiki Platform is affected by a CSRF vulnerability that enables deletion or renaming of tags without confirmation. The issue affects XWiki Platform and is mitigated by patches in XWiki 13.10.7, 14.4.1, and 14.5RC1. Workarounds patch the Main.Tags logic to validate CSRF tokens (example snippet pro...