Vulnerabilities > Xwiki > Xwiki > 4.5

DATE CVE VULNERABILITY TITLE RISK
2023-03-07 CVE-2023-27480 XXE vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-611
7.7
7.7
2023-03-02 CVE-2023-26056 Incorrect Authorization vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki CWE-863
5.4
5.4
2023-03-02 CVE-2023-26470 Out-of-bounds Write vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-787
7.5
7.5
2023-03-02 CVE-2023-26473 Unspecified vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki
6.5
6.5
2023-03-02 CVE-2023-26475 Improper Privilege Management vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki CWE-269
8.8
8.8
2023-03-02 CVE-2023-26476 Improper Restriction of Excessive Authentication Attempts vulnerability in Xwiki
XWiki Platform is a generic wiki platform.
network
low complexity
xwiki CWE-307
7.5
7.5
2022-11-23 CVE-2022-41932 Allocation of Resources Without Limits or Throttling vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-770
5.3
5.3
2022-11-23 CVE-2022-41934 Improper Encoding or Escaping of Output vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-116
8.8
8.8
2022-11-23 CVE-2022-41927 Cross-Site Request Forgery (CSRF) vulnerability in Xwiki
XWiki Platform is vulnerable to Cross-Site Request Forgery (CSRF) that may allow attackers to delete or rename tags without needing any confirmation.
network
low complexity
xwiki CWE-352
7.4
7.4
2022-11-22 CVE-2022-41937 Missing Authorization vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-862
8.1
8.1