Vulnerabilities > Xwiki > Xwiki > 13.4.6

DATE CVE VULNERABILITY TITLE RISK
2024-01-09 CVE-2024-21648 Improper Handling of Insufficient Privileges vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-274
8.8
2024-01-08 CVE-2024-21650 Code Injection vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-94
critical
9.8
2023-12-21 CVE-2023-50732 Incorrect Authorization vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-863
6.3
2023-12-15 CVE-2023-50719 Cleartext Storage of Sensitive Information vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki CWE-312
7.5
2023-12-15 CVE-2023-50720 Unspecified vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki
5.3
2023-12-15 CVE-2023-50721 Code Injection vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki CWE-94
8.8
2023-12-15 CVE-2023-50722 Cross-site Scripting vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki CWE-79
8.8
2023-12-15 CVE-2023-50723 Code Injection vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki CWE-94
8.8
2023-11-20 CVE-2023-48240 Server-Side Request Forgery (SSRF) vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki CWE-918
8.8
2023-11-20 CVE-2023-48241 Unspecified vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki
7.5