Lucene search
K

6 matches found

OpenVAS
OpenVAS
added 2025/07/18 12:0 a.m.3 views

XWiki 15.9-rc-1 < 15.10.12, 16.0.0-rc-1 < 16.4.3, 16.5.0-rc-1 < 16.8.0 Privilege Escalation Vulnerability (GHSA-x7wv-5qg4-vmr6)

Xwiki is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:xwiki:xwiki"; ifdescripti...

9CVSS6.7AI score0.00338EPSS
Exploits1References1
Circl
Circl
added 2025/04/30 3:48 p.m.29 views

CVE-2025-32973

creationtimestamp| type| source ---|---|--- 2025-04-30 15:48:37+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114427698608004436 2025-04-30 16:30:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lo27ru6vjs2n 2025-04-30 17:32:01+00:00| seen|...

9CVSS7.7AI score0.00338EPSS
Exploits1References3
NVD
NVD
added 2025/04/30 3:16 p.m.18 views

CVE-2025-32973

XWiki is a generic wiki platform. In versions starting from 15.9-rc-1 to before 15.10.12, from 16.0.0-rc-1 to before 16.4.3, and from 16.5.0-rc-1 to before 16.8.0-rc-1, when a user with programming rights edits a document in XWiki that was last edited by a user without programming rights and...

9CVSS0.00338EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/04/30 2:55 p.m.16 views

CVE-2025-32973 org.xwiki.platform:xwiki-platform-component-wiki provides no warning when granting XWiki.ComponentClass programming right

XWiki is a generic wiki platform. In versions starting from 15.9-rc-1 to before 15.10.12, from 16.0.0-rc-1 to before 16.4.3, and from 16.5.0-rc-1 to before 16.8.0-rc-1, when a user with programming rights edits a document in XWiki that was last edited by a user without programming rights and...

9CVSS6.9AI score0.00338EPSS
Exploits1References3
CVE
CVE
added 2025/04/30 2:55 p.m.67 views

CVE-2025-32973

Summary: CVE-2025-32973 affects XWiki Platform (org.xwiki.platform:xwiki-platform-component-wiki). In specific version ranges (15.9-rc-1 to before 15.10.12, 16.0.0-rc-1 to before 16.4.3, and 16.5.0-rc-1 to before 16.8.0-rc-1), a user with programming rights edits a document that was last edited b...

9CVSS9.2AI score0.00338EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2025/04/30 2:55 p.m.68 views

CVE-2025-32973 org.xwiki.platform:xwiki-platform-component-wiki provides no warning when granting XWiki.ComponentClass programming right

XWiki is a generic wiki platform. In versions starting from 15.9-rc-1 to before 15.10.12, from 16.0.0-rc-1 to before 16.4.3, and from 16.5.0-rc-1 to before 16.8.0-rc-1, when a user with programming rights edits a document in XWiki that was last edited by a user without programming rights and...

9CVSS0.00338EPSS
Exploits1References3
Rows per page
Query Builder