CVE-2023-45136
XWiki Platform is affected by a reflected XSS in the page creation form when document name validation is enabled. Vulnerable in 12.0-rc-1 through versions before 12.10.12 and 15.5-rc-1; patched in 14.10.12 and 15.5-rc-1 by escaping. The vulnerable template createinline.vm can be patched per the f...