Vulnerabilities > Xwiki > Xwiki > 14.10.6
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-09 | CVE-2024-21648 | Improper Handling of Insufficient Privileges vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 8.8 |
| 2024-01-09 | CVE-2024-21651 | Resource Exhaustion vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 6.5 |
| 2024-01-08 | CVE-2024-21650 | Code Injection vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 9.8 |
| 2023-12-21 | CVE-2023-50732 | Incorrect Authorization vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 6.3 |
| 2023-11-20 | CVE-2023-48240 | Server-Side Request Forgery (SSRF) vulnerability in Xwiki XWiki Platform is a generic wiki platform. | 8.8 |
| 2023-11-07 | CVE-2023-46242 | Cross-Site Request Forgery (CSRF) vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 8.8 |
| 2023-11-07 | CVE-2023-46244 | Incorrect Authorization vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 8.8 |
| 2023-11-07 | CVE-2023-38509 | Resource Leak vulnerability in Xwiki XWiki Platform is a generic wiki platform. | 4.3 |
| 2023-11-06 | CVE-2023-46731 | Code Injection vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 9.8 |
| 2023-11-06 | CVE-2023-46732 | Cross-site Scripting vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 6.1 |