Vulnerabilities > Xwiki > Xwiki > 12.5
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-05-28 | CVE-2021-32620 | Incorrect Authorization vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 4.0 |
2021-05-28 | CVE-2021-32621 | Code Injection vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 8.8 |
2021-04-20 | CVE-2021-29459 | Cross-site Scripting vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 4.3 |
2021-03-23 | CVE-2021-21380 | SQL Injection vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 6.5 |
2021-03-12 | CVE-2021-21379 | Improper Preservation of Permissions vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 3.5 |
2020-12-31 | CVE-2020-13654 | Improper Encoding or Escaping of Output vulnerability in Xwiki XWiki Platform before 12.8 mishandles escaping in the property displayer. | 7.5 |