2 matches found
Vulnerability of the HTTP Meta Info fields, Footer Copyright, and Footer Version fields in the administration interface for creating collaborative web applications – XWiki Platform. This allows attackers to perform cross-site scripting attacks (XSS).
The vulnerabilities of the HTTP Meta Info, Footer Copyright, and Footer Version fields in the administration interface for the XWiki Platform’s collaborative web applications are related to the lack of measures taken to protect the website structure. Exploiting these vulnerabilities could allow...
CVE-2025-51990
XWiki through version 17.3.0 is affected by multiple stored Cross-Site Scripting XSS vulnerabilities in the Administration interface, specifically under the Presentation section of the Global Preferences panel. An authenticated administrator can inject arbitrary JavaScript payloads into the HTTP...