Lucene search
K

5 matches found

OpenVAS
OpenVAS
added 2023/11/16 12:0 a.m.15 views

XWiki 5.1-rc-1 < 14.10.8, 15.0-rc-1 < 15.3 Privilege Escalation Vulnerability (GHSA-v2rr-xw95-wcjx)

Xwiki is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:xwiki:xwiki"; ifdescripti...

9.9CVSS7.3AI score0.01621EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2023/11/16 12:0 a.m.17 views

XWiki 9.4-rc-1 < 14.10.8, 15.0-rc-1 < 15.3 Information Disclosure Vulnerability (GHSA-gh64-qxh5-4m33)

Xwiki is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:xwiki:xwiki";...

6.5CVSS6.6AI score0.00752EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2023/11/16 12:0 a.m.20 views

XWiki 3.5-milestone-1 < 14.10.8, 15.0-rc-1 < 15.3 XSS Vulnerability (GHSA-vcvr-v426-3m3m)

Xwiki is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:xwiki:xwiki";...

9.9CVSS7.3AI score0.01076EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2023/11/16 12:0 a.m.19 views

XWiki 3.5-milestone-1 < 14.10.9, 15.0 < 15.3 Information Disclosure Vulnerability (GHSA-g9w4-prf3-m25g)

Xwiki is prone to a information disclosure vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:xwiki:xwiki";...

4.3CVSS5.9AI score0.00661EPSS
Exploits1References1
OSV
OSV
added 2023/07/27 6:53 p.m.29 views

CVE-2023-38509 XWiki Platform's obfuscated email addresses should not be sorted

XWiki Platform is a generic wiki platform. In org.xwiki.platform:xwiki-platform-livetable-ui starting with version 3.5-milestone-1 and prior to versions 14.10.9 and 15.3-rc-1, the mail obfuscation configuration was not fully taken into account and is was still possible by obfuscated emails. This...

4.3CVSS4.7AI score0.00661EPSS
Exploits1References6
Rows per page
Query Builder