Vulnerabilities > Xwiki > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-03-02 CVE-2023-26477 Code Injection vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki CWE-94
critical
 9.8
9.8
2022-09-08 CVE-2022-36096 Cross-site Scripting vulnerability in Xwiki
The XWiki Platform Index UI is an Index of all pages, attachments, orphans and deleted pages and attachments for XWiki Platform, a generic wiki platform.
network
low complexity
xwiki CWE-79
critical
 9.0
9.0
2022-09-08 CVE-2022-36098 Unspecified vulnerability in Xwiki
XWiki Platform Mentions UI is a user interface for mentioning users in wiki content for XWiki Platform, a generic wiki platform.
network
low complexity
xwiki
critical
 9.0
9.0
2022-09-08 CVE-2022-36094 Cross-site Scripting vulnerability in Xwiki
XWiki Platform Web Parent POM contains Web resources for the XWiki platform, a generic wiki platform.
network
low complexity
xwiki CWE-79
critical
 9.0
9.0
2022-05-06 CVE-2022-29161 Inadequate Encryption Strength vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-326
critical
 9.8
9.8