Vulnerabilities > Xwiki > Xwiki > 14.10.15

DATE CVE VULNERABILITY TITLE RISK
2024-01-09 CVE-2024-21648 Improper Handling of Insufficient Privileges vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-274
8.8
8.8
2024-01-09 CVE-2024-21651 Resource Exhaustion vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-400
6.5
6.5
2024-01-08 CVE-2024-21650 Code Injection vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-94
critical
 9.8
9.8