2 matches found
Cross-site Scripting (XSS)
Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS via the propertyDisplayType parameter in edit-form-body. An authenticated attacker can execute arbitrary JavaScript code in the context of the user's browser by crafting a malicious request and tricking a user...
XWiki Platform has unspecified vulnerabilities
XWiki Platform is a set of wiki platforms for creating web collaboration applications from the French company XWiki Xwiki. XWiki Platform has a security vulnerability that stems from incorrect handling of escapes in the display of properties. No details of the vulnerability are currently availabl...