6 matches found
XWiki 15.9-rc-1 < 15.10.12, 16.0.0-rc-1 < 16.4.3, 16.5.0-rc-1 < 16.8.0 Privilege Escalation Vulnerability (GHSA-x7wv-5qg4-vmr6)
Xwiki is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:xwiki:xwiki"; ifdescripti...
CVE-2025-32973
creationtimestamp| type| source ---|---|--- 2025-04-30 15:48:37+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114427698608004436 2025-04-30 16:30:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lo27ru6vjs2n 2025-04-30 17:32:01+00:00| seen|...
CVE-2025-32973
XWiki is a generic wiki platform. In versions starting from 15.9-rc-1 to before 15.10.12, from 16.0.0-rc-1 to before 16.4.3, and from 16.5.0-rc-1 to before 16.8.0-rc-1, when a user with programming rights edits a document in XWiki that was last edited by a user without programming rights and...
CVE-2025-32973 org.xwiki.platform:xwiki-platform-component-wiki provides no warning when granting XWiki.ComponentClass programming right
XWiki is a generic wiki platform. In versions starting from 15.9-rc-1 to before 15.10.12, from 16.0.0-rc-1 to before 16.4.3, and from 16.5.0-rc-1 to before 16.8.0-rc-1, when a user with programming rights edits a document in XWiki that was last edited by a user without programming rights and...
CVE-2025-32973
Summary: CVE-2025-32973 affects XWiki Platform (org.xwiki.platform:xwiki-platform-component-wiki). In specific version ranges (15.9-rc-1 to before 15.10.12, 16.0.0-rc-1 to before 16.4.3, and 16.5.0-rc-1 to before 16.8.0-rc-1), a user with programming rights edits a document that was last edited b...
CVE-2025-32973 org.xwiki.platform:xwiki-platform-component-wiki provides no warning when granting XWiki.ComponentClass programming right
XWiki is a generic wiki platform. In versions starting from 15.9-rc-1 to before 15.10.12, from 16.0.0-rc-1 to before 16.4.3, and from 16.5.0-rc-1 to before 16.8.0-rc-1, when a user with programming rights edits a document in XWiki that was last edited by a user without programming rights and...