All 7 CVE vulnerabilities found in xwiki-pro-macros, with AI-generated Chinese analysis, references, and POCs.
Vendor: xwikisas
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-65036 | XWiki Remote Macros vulnerable to remote code execution using the confluence details summary macro CWE-862 | 8.3 | High | 2025-12-05 |
| CVE-2025-65089 | XWiki view file macro: User can view content of office file without view rights on the attachment CWE-862 | 6.8 | Medium | 2025-11-19 |
| CVE-2025-55730 | XWiki Remote Macros vulnerable to remote code execution using the confluence paste code macro CWE-116 | 10.0 | Critical | 2025-09-09 |
| CVE-2025-55729 | XWiki Remote Macros vulnerable to remote code execution using the ConfluenceLayoutSection macro CWE-116 | 10.0 | Critical | 2025-09-09 |
| CVE-2025-55728 | XWiki Remote Macros vulnerable to remote code execution using the panel macro CWE-95 | 10.0 | Critical | 2025-09-09 |
| CVE-2025-55727 | XWiki Remote Macros vulnerable to remote code execution from width parameter in the column macro CWE-95 | 10.0 | Critical | 2025-09-09 |
| CVE-2024-42489 | Pro Macros Remote Code Execution via Viewpdf and similar macros CWE-74 | 10.0 | Critical | 2024-08-12 |
All 7 known CVE vulnerabilities affecting xwiki-pro-macros with full Chinese analysis, references, and POCs where available.