Vulnerabilities > Xwiki > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-07 | CVE-2023-27480 | XXE vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 7.7 |
| 2023-03-02 | CVE-2023-26470 | Out-of-bounds Write vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 7.5 |
| 2023-03-02 | CVE-2023-26471 | Unspecified vulnerability in Xwiki XWiki Platform is a generic wiki platform. | 8.8 |
| 2023-03-02 | CVE-2023-26472 | Improper Encoding or Escaping of Output vulnerability in Xwiki XWiki Platform is a generic wiki platform. | 8.8 |
| 2023-03-02 | CVE-2023-26474 | Unspecified vulnerability in Xwiki XWiki Platform is a generic wiki platform. | 8.8 |
| 2023-03-02 | CVE-2023-26475 | Improper Privilege Management vulnerability in Xwiki XWiki Platform is a generic wiki platform. | 8.8 |
| 2023-03-02 | CVE-2023-26476 | Improper Restriction of Excessive Authentication Attempts vulnerability in Xwiki XWiki Platform is a generic wiki platform. | 7.5 |
| 2023-03-02 | CVE-2023-26478 | Unspecified vulnerability in Xwiki XWiki Platform is a generic wiki platform. | 8.1 |
| 2023-01-04 | CVE-2023-22457 | Cross-Site Request Forgery (CSRF) vulnerability in Xwiki Ckeditor Integration CKEditor Integration UI adds support for editing wiki pages using CKEditor. | 8.8 |
| 2022-11-23 | CVE-2022-41931 | Eval Injection vulnerability in Xwiki xwiki-platform-icon-ui is vulnerable to Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection'). | 8.8 |