Vulnerabilities > Xwiki > Xwiki > 12.10.5

DATE CVE VULNERABILITY TITLE RISK
2024-06-24 CVE-2024-38369 Incorrect Authorization vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-863
4.3
4.3
2024-04-10 CVE-2024-31997 Missing Authorization vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki CWE-862
8.8
8.8
2024-04-10 CVE-2024-31985 Cross-Site Request Forgery (CSRF) vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki CWE-352
5.4
5.4
2024-04-10 CVE-2024-31986 Cross-Site Request Forgery (CSRF) vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki CWE-352
8.8
8.8
2024-04-10 CVE-2024-31987 Missing Authorization vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki CWE-862
8.8
8.8
2024-04-10 CVE-2024-31996 Code Injection vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki CWE-94
critical
 9.8
9.8
2024-04-10 CVE-2024-31465 Code Injection vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki CWE-94
8.8
8.8
2024-04-10 CVE-2024-31981 Missing Authorization vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki CWE-862
8.8
8.8
2024-04-10 CVE-2024-31982 Code Injection vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki CWE-94
critical
 9.8
9.8
2024-04-10 CVE-2024-31983 Missing Authorization vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki CWE-862
8.8
8.8