Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 229 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2023-34465 XWiki Platform's Mail.MailConfig can be edited by any user with edit rights xwikixwiki-platform Critical 9.9 2023-06-23 15:08:00 Deep Dive
CVE-2023-34464 XWiki vulnerable to stored cross-site scripting via any wiki document and the displaycontent/rendercontent template xwikixwiki-platform Critical 9.0 2023-06-23 14:44:47 Deep Dive
CVE-2023-35166 Privilege escalation (PR) from account through TipsPanel xwikixwiki-platform Critical 9.9 2023-06-20 19:29:52 Deep Dive
CVE-2023-32068 URL Redirection to Untrusted Site in XWiki xwikixwiki-platform Medium 4.7 2023-05-15 20:53:09 Deep Dive
CVE-2023-32071 XWiki Platform vulnerable to RXSS via editor parameter - importinline template xwikixwiki-platform Critical 9.0 2023-05-09 15:42:16 Deep Dive
CVE-2023-32069 XWiki Platform privilege escalation (PR)/RCE from account through class sheet xwikixwiki-platform Critical 9.9 2023-05-09 15:32:00 Deep Dive
CVE-2023-29517 Exposure of Sensitive Information to an Unauthorized Actor in org.xwiki.platform:xwiki-platform-office-viewer xwikixwiki-platform High 7.5 2023-04-18 23:54:13 Deep Dive
CVE-2023-29516 Code injection from view right on XWiki.AttachmentSelector in xwiki-platform xwikixwiki-platform Critical 9.9 2023-04-18 23:51:59 Deep Dive
CVE-2023-29515 Cross-site scripting (XSS) in xwiki-platform xwikixwiki-platform High 7.7 2023-04-18 23:50:17 Deep Dive
CVE-2023-29514 Code injection in template provider administration in xwiki-platform xwikixwiki-platform Critical 9.9 2023-04-18 23:48:12 Deep Dive
CVE-2023-29513 Users can be created even when registration is disabled without validation via the template macro in xwiki-platform xwikixwiki-platform Medium 5.0 2023-04-18 23:46:11 Deep Dive
CVE-2023-29512 Code injection in xwiki-platform-web-templates xwikixwiki-platform Critical 9.9 2023-04-18 23:44:26 Deep Dive
CVE-2023-29510 Code injection via unescaped translations in xwiki-platform xwikixwiki-platform Critical 9.9 2023-04-18 23:42:44 Deep Dive
CVE-2023-29522 Code injection from view right on XWiki.ClassSheet in xwiki-platform xwikixwiki-platform Critical 9.9 2023-04-18 23:38:23 Deep Dive
CVE-2023-29521 Code injection from account/view through VFS Tree macro in xwiki-platform xwikixwiki-platform High 8.4 2023-04-18 23:36:17 Deep Dive
CVE-2023-29520 Page render failure due to broken translations in xwiki-platform xwikixwiki-platform Medium 4.3 2023-04-18 23:33:41 Deep Dive
CVE-2023-29519 Code injection in org.xwiki.platform:xwiki-platform-attachment-ui xwikixwiki-platform Critical 9.0 2023-04-18 23:31:09 Deep Dive
CVE-2023-29518 Code injection from view right using Invitation.InvitationCommon in xwiki-platform xwikixwiki-platform Critical 9.9 2023-04-18 23:29:33 Deep Dive
CVE-2023-29523 Code injection in display method used in user profiles in xwiki-platform xwikixwiki-platform Critical 9.9 2023-04-18 23:09:47 Deep Dive
CVE-2023-29524 Code injection from account through XWiki.SchedulerJobSheet in xwiki-platform xwikixwiki-platform Critical 9.9 2023-04-18 23:04:48 Deep Dive