Vulnerabilities > Xwiki > Xwiki > 3.1

DATE CVE VULNERABILITY TITLE RISK
2024-01-09 CVE-2024-21648 Improper Handling of Insufficient Privileges vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-274
8.8
2024-01-08 CVE-2024-21650 Code Injection vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-94
critical
9.8
2023-12-15 CVE-2023-50720 Unspecified vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki
5.3
2023-12-15 CVE-2023-50722 Cross-site Scripting vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki CWE-79
8.8
2023-12-15 CVE-2023-50723 Code Injection vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki CWE-94
8.8
2023-11-20 CVE-2023-48293 Cross-Site Request Forgery (CSRF) vulnerability in Xwiki
The XWiki Admin Tools Application provides tools to help the administration of XWiki.
network
low complexity
xwiki CWE-352
8.8
2023-11-07 CVE-2023-46243 Code Injection vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-94
8.8
2023-11-07 CVE-2023-46242 Cross-Site Request Forgery (CSRF) vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-352
8.8
2023-11-06 CVE-2023-46731 Code Injection vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-94
critical
9.8
2023-10-25 CVE-2023-45137 Cross-site Scripting vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-79
5.4