Vulnerabilities > Xwiki > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-11-13 CVE-2024-52300 Cross-site Scripting vulnerability in Xwiki PDF Viewer Macro
macro-pdfviewer is a PDF Viewer Macro for XWiki using Mozilla pdf.js.
network
low complexity
xwiki CWE-79
critical
 9.0
9.0
2024-01-08 CVE-2024-21650 Code Injection vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-94
critical
 9.8
9.8
2023-11-06 CVE-2023-46731 Code Injection vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-94
critical
 9.8
9.8
2023-10-25 CVE-2023-45134 Cross-site Scripting vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-79
critical
 9.0
9.0
2023-10-25 CVE-2023-45136 Cross-site Scripting vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-79
critical
 9.6
9.6
2023-10-25 CVE-2023-37908 Cross-site Scripting vulnerability in Xwiki Xwiki-Rendering
XWiki Rendering is a generic Rendering system that converts textual input in a given syntax into another syntax.
network
low complexity
xwiki CWE-79
critical
 9.6
9.6
2023-10-16 CVE-2023-45144 Cross-site Scripting vulnerability in Xwiki Oauth Identity
com.xwiki.identity-oauth:identity-oauth-ui is a package to aid in building identity and service providers based on OAuth authorizations.
network
low complexity
xwiki CWE-79
critical
 9.6
9.6
2023-10-12 CVE-2023-45138 Unspecified vulnerability in Xwiki Change Request
Change Request is an pplication allowing users to request changes on a wiki without publishing the changes directly.
network
low complexity
xwiki
critical
 9.6
9.6
2023-07-10 CVE-2023-37277 Unspecified vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki
critical
 9.6
9.6
2023-05-09 CVE-2023-32071 Cross-site Scripting vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki CWE-79
critical
 9.0
9.0