CVE-2022-41934
CVE-2022-41934 affects XWiki Platform, where any user with view rights on common documents (including the menu macro) can inject and execute arbitrary Groovy, Python, or Velocity code due to improper escaping of macro content and menu macro parameters, potentially gaining full control of the XWik...