Vulnerabilities > Xwiki
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-07 | CVE-2022-31167 | Missing Authorization vulnerability in Xwiki XWiki Platform Security Parent POM contains the security APIs for XWiki Platform, a generic wiki platform. | 6.5 |
| 2022-05-31 | CVE-2022-29258 | Cross-site Scripting vulnerability in Xwiki XWiki Platform Filter UI provides a generic user interface to convert from a XWiki Filter input stream to an output stream with settings for each stream. | 6.1 |
| 2022-05-25 | CVE-2022-29251 | Cross-site Scripting vulnerability in Xwiki XWiki Platform Flamingo Theme UI is a tool that allows customization and preview of any Flamingo-based skin. | 6.1 |
| 2022-05-25 | CVE-2022-29252 | Cross-site Scripting vulnerability in Xwiki XWiki Platform Wiki UI Main Wiki is a package for managing subwikis. | 6.1 |
| 2022-05-25 | CVE-2022-29253 | Path Traversal vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 2.7 |
| 2022-05-06 | CVE-2022-29161 | Inadequate Encryption Strength vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 9.8 |
| 2022-05-02 | CVE-2022-24897 | Path Traversal vulnerability in Xwiki APIs to evaluate content with Velocity is a package for APIs to evaluate content with Velocity. | 7.5 |
| 2022-04-28 | CVE-2022-24898 | XXE vulnerability in Xwiki Commons org.xwiki.commons:xwiki-commons-xml is a common module used by other XWiki top level projects. | 4.9 |
| 2022-04-08 | CVE-2022-24819 | Unspecified vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 5.3 |
| 2022-04-08 | CVE-2022-24820 | Missing Authentication for Critical Function vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 5.3 |