Vulnerabilities > Xwiki

DATE CVE VULNERABILITY TITLE RISK
2023-10-25 CVE-2023-37913 Path Traversal vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-22
8.8
2023-10-16 CVE-2023-45144 Cross-site Scripting vulnerability in Xwiki Oauth Identity
com.xwiki.identity-oauth:identity-oauth-ui is a package to aid in building identity and service providers based on OAuth authorizations.
network
low complexity
xwiki CWE-79
critical
9.6
2023-10-12 CVE-2023-45138 Cross-site Scripting vulnerability in Xwiki Change Request
Change Request is an pplication allowing users to request changes on a wiki without publishing the changes directly.
network
low complexity
xwiki CWE-79
critical
9.6
2023-09-01 CVE-2023-41046 Missing Authorization vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-862
6.3
2023-08-24 CVE-2023-40572 Cross-Site Request Forgery (CSRF) vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-352
8.0
2023-08-24 CVE-2023-40573 Unspecified vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki
8.8
2023-08-23 CVE-2023-40177 Code Injection vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-94
8.8
2023-08-23 CVE-2023-40176 Cross-site Scripting vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-79
5.4
2023-08-17 CVE-2023-37914 Code Injection vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-94
8.8
2023-07-14 CVE-2023-37462 Eval Injection vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-95
8.8