Vulnerabilities > Xwiki

DATE	CVE	VULNERABILITY TITLE	RISK
2022-11-23	CVE-2022-41928	Unspecified vulnerability in Xwiki XWiki Platform vulnerable to Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection') in AttachmentSelector.xml. network low complexity xwiki	8.8
2022-11-23	CVE-2022-41929	Unspecified vulnerability in Xwiki org.xwiki.platform:xwiki-platform-oldcore is missing authorization in User#setDisabledStatus, which may allow an incorrectly authorized user with only Script rights to enable or disable a user. network low complexity xwiki	4.9
2022-11-23	CVE-2022-41930	Unspecified vulnerability in Xwiki org.xwiki.platform:xwiki-platform-user-profile-ui is missing authorization to enable or disable users. network low complexity xwiki	8.2
2022-11-22	CVE-2022-41936	Unspecified vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. network low complexity xwiki	7.5
2022-11-22	CVE-2022-41937	Unspecified vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. network low complexity xwiki	8.1
2022-11-04	CVE-2022-39387	Improper Authentication vulnerability in Xwiki Openid Connect XWiki OIDC has various tools to manipulate OpenID Connect protocol in XWiki. network low complexity xwiki CWE-287	7.5
2022-09-08	CVE-2022-36095	Unspecified vulnerability in Xwiki XWiki Platform is a generic wiki platform. network low complexity xwiki	4.3
2022-09-08	CVE-2022-36096	Cross-site Scripting vulnerability in Xwiki The XWiki Platform Index UI is an Index of all pages, attachments, orphans and deleted pages and attachments for XWiki Platform, a generic wiki platform. network low complexity xwiki CWE-79 critical	9.0
2022-09-08	CVE-2022-36097	Cross-site Scripting vulnerability in Xwiki XWiki Platform Attachment UI provides a macro to easily upload and select attachments for XWiki Platform, a generic wiki platform. network low complexity xwiki CWE-79	6.1
2022-09-08	CVE-2022-36098	Unspecified vulnerability in Xwiki XWiki Platform Mentions UI is a user interface for mentioning users in wiki content for XWiki Platform, a generic wiki platform. network low complexity xwiki critical	9.0

Vulnerabilities > Xwiki {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Xwiki"}]}

Vulnerabilities > Xwiki