| CVE-2024-55879 |
unknown |
— |
— |
|
|
|
2y ago |
XWiki allows RCE from script right in configurable sections |
| CVE-2024-21650 |
unknown |
— |
— |
|
|
|
2y ago |
XWiki Remote Code Execution Vulnerability via User Registration |
| CVE-2023-50723 |
unknown |
— |
— |
|
|
|
3y ago |
Remote code execution/programming rights with configuration section from any user account |
| CVE-2023-50722 |
unknown |
— |
— |
|
|
|
3y ago |
XSS/CSRF Remote Code Execution in XWiki.ConfigurableClass |
| CVE-2023-46731 |
unknown |
— |
— |
|
|
|
3y ago |
XWiki Platform vulnerable to remote code execution through the section parameter in Administration as guest |
| CVE-2023-29514 |
unknown |
— |
— |
|
|
|
3y ago |
XWiki vulnerable to Code Injection in template provider administration |
| CVE-2023-29510 |
unknown |
— |
— |
|
|
|
3y ago |
Code injection via unescaped translations in xwiki-platform |
| CVE-2023-29511 |
unknown |
— |
— |
|
|
|
3y ago |
xwiki-platform-administration-ui vulnerable to privilege escalation |
| CVE-2021-32732 |
unknown |
— |
— |
|
|
|
4y ago |
Cross-Site Request Forgery in xwiki-platform |
| CVE-2022-23616 |
unknown |
— |
— |
|
|
|
4y ago |
Remote code execution in xwiki-platform |
| CVE-2021-32730 |
unknown |
— |
— |
|
|
|
5y ago |
No CSRF protection on the password change form |