2 matches found
CVE-2025-55749
creationtimestamp| type| source ---|---|--- 2025-12-02 01:19:48+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m6xrm65ean2s 2025-12-11 17:39:34+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-55749.yaml 2025-12-12...
CVE-2025-55749 The XWiki Jetty package (XJetty) allows accessing any application file through URL
XWiki is an open-source wiki software platform. From 16.7.0 to 16.10.11, 17.4.4, or 17.7.0, in an instance which is using the XWiki Jetty package XJetty, a context is exposed to statically access any file located in the webapp/ folder. It allows accessing files which might contains credentials...