VIR Vulnerability Intelligence Relay

Package impact

java Maven / org.xwiki.commons:xwiki-commons-velocity

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2024-31996 unknown 2y ago XWiki Commons missing escaping of `{` in Velocity escapetool allows remote code execution
CVE-2022-24897 unknown 4y ago Arbitrary filesystem write access from velocity.