All 3 CVE vulnerabilities found in application-admintools, with AI-generated Chinese analysis, references, and POCs.
Vendor: xwiki-contrib
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-54990 | XWiki AdminTools application doesn't set permissions on the AdminTools space CWE-276 | 5.3 | Medium | 2025-11-18 |
| CVE-2023-48293 | XWiki Admin Tools Application CSRF with QueryOnXWiki allows arbitrary database queries CWE-352 | 8.8 | High | 2023-11-20 |
| CVE-2023-48292 | XWiki Admin Tools Application Run Shell Command allows CSRF RCE attacks CWE-352 | 9.7 | Critical | 2023-11-20 |
All 3 known CVE vulnerabilities affecting application-admintools with full Chinese analysis, references, and POCs where available.