Vulnerabilities > Xwiki

DATE CVE VULNERABILITY TITLE RISK
2022-05-06 CVE-2022-29161 Use of a Broken or Risky Cryptographic Algorithm vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
xwiki CWE-327
6.8
2022-05-02 CVE-2022-24897 Exposure of Resource to Wrong Sphere vulnerability in Xwiki
APIs to evaluate content with Velocity is a package for APIs to evaluate content with Velocity.
network
xwiki CWE-668
6.0
2022-04-28 CVE-2022-24898 XXE vulnerability in Xwiki Commons
org.xwiki.commons:xwiki-commons-xml is a common module used by other XWiki top level projects.
network
low complexity
xwiki CWE-611
4.0
2022-04-08 CVE-2022-24819 Privacy Violation vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-359
5.0
2022-04-08 CVE-2022-24820 Information Exposure vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
xwiki CWE-200
4.3
2022-04-08 CVE-2022-24821 Incorrect Use of Privileged APIs vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-648
5.5
2022-02-09 CVE-2022-23620 Path Traversal vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
xwiki CWE-22
5.8
2022-02-09 CVE-2022-23621 Missing Authorization vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-862
4.0
2022-02-09 CVE-2022-23622 Cross-site Scripting vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
xwiki CWE-79
4.3
2022-02-09 CVE-2022-23615 Incorrect Authorization vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-863
5.5