Vulnerabilities > Xwiki > Xwiki > 12.10

DATE CVE VULNERABILITY TITLE RISK
2022-02-04 CVE-2021-43841 Cross-site Scripting vulnerability in Xwiki
XWiki is a generic wiki platform offering runtime services for applications built on top of it.
network
xwiki CWE-79
3.5
3.5
2021-07-01 CVE-2021-32730 Cross-Site Request Forgery (CSRF) vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
xwiki CWE-352
4.3
4.3
2021-07-01 CVE-2021-32729 Incorrect Permission Assignment for Critical Resource vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-732
5.5
5.5
2021-05-28 CVE-2021-32620 Incorrect Authorization vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-863
4.0
4.0
2021-05-28 CVE-2021-32621 Code Injection vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-94
8.8
8.8