6 matches found
EUVD-2025-18286
Malicious code in bioql PyPI...
XWiki allows privilege escalation through link refactoring
Impact Pages can gain script or programming rights when they contain a link and the target of the link is renamed or moved. This might lead to execution of scripts contained in xobjects that should have never been executed. This vulnerability affects all version of XWiki since 8.2 and 7.4.5...
GHSA-JM43-HRQ7-R7W6 XWiki allows privilege escalation through link refactoring
Impact Pages can gain script or programming rights when they contain a link and the target of the link is renamed or moved. This might lead to execution of scripts contained in xobjects that should have never been executed. This vulnerability affects all version of XWiki since 8.2 and 7.4.5...
CVE-2025-49580
Summary of CVE-2025-49580 : XWiki platforms are affected by a privilege-escalation vulnerability where pages can gain script or programming rights if a link target is renamed or moved, potentially allowing execution of scripts in xobjects. Affected versions include 7.4.5 through 16.4.7 and 8.2 th...
CVE-2025-49580 XWiki allows privilege escalation through link refactoring
XWiki is a generic wiki platform. From 8.2 and 7.4.5 until 17.1.0-rc-1, 16.10.4, and 16.4.7, pages can gain script or programming rights when they contain a link and the target of the link is renamed or moved. This might lead to execution of scripts contained in xobjects that should have never be...
CVE-2025-49580 XWiki allows privilege escalation through link refactoring
XWiki is a generic wiki platform. From 8.2 and 7.4.5 until 17.1.0-rc-1, 16.10.4, and 16.4.7, pages can gain script or programming rights when they contain a link and the target of the link is renamed or moved. This might lead to execution of scripts contained in xobjects that should have never be...