org.xwiki.platform:xwiki-platform-web
Security Advisories for org.xwiki.platform:xwiki-platform-web in maven
Critical
almost 2 years ago
XWiki Platform vulnerable to XSS with edit right in the create document form for existing pages
maven
org.xwiki.platform:xwiki-platform-web, org.xwiki.platform:xwiki-platform-web-templates
Critical
almost 2 years ago
XWiki users can be tricked to execute scripts as the create page action doesn't display the page's title
maven
org.xwiki.platform:xwiki-platform-web, org.xwiki.platform:xwiki-platform-web-templates
Critical
almost 2 years ago
XWiki Platform XSS vulnerability from account in the create page form via template provider
maven
org.xwiki.platform:xwiki-platform-web, org.xwiki.platform:xwiki-web-standard, org.xwiki.platform:xwiki-platform-web-templates
Critical
over 2 years ago
XWiki vulnerable to stored cross-site scripting via any wiki document and the displaycontent/rendercontent template
maven
org.xwiki.platform:xwiki-platform-web-templates, org.xwiki.platform:xwiki-platform-web
High
over 2 years ago
Improper Neutralization of Script-Related HTML Tags (XSS) in the LiveTable Macro
maven
org.xwiki.platform:xwiki-web-standard, org.xwiki.platform:xwiki-platform-web, org.xwiki.platform:xwiki-platform-web-templates, org.xwiki.platform:xwiki-platform-flamingo, org.xwiki.platform:xwiki-platform-flamingo-skin, org.xwiki.platform:xwiki-platform-flamingo-skin-resources
Moderate
over 2 years ago
Unprivileged XWiki Platform users can make arbitrary select queries using DatabaseListProperty and suggest.vm
maven
org.xwiki.platform:xwiki-platform-web
High
about 3 years ago
XWiki Platform Web Templates vulnerable to Missing Authorization, Exposure of Private Personal Information to Unauthorized Actor
maven
org.xwiki.platform:xwiki-platform-web, org.xwiki.platform:xwiki-platform-web-templates
High
about 3 years ago
XWiki Platform Web Templates vulnerable to Unauthorized User Registration Through the Distribution Wizard
maven
org.xwiki.platform:xwiki-platform-web, org.xwiki.platform:xwiki-platform-web-templates
High
about 3 years ago
XWiki Platform Web Parent POM vulnerable to XSS in the attachment history
maven
org.xwiki.platform:xwiki-platform-web
Moderate
over 3 years ago
Unauthenticated user can list hidden document from multiple velocity templates in XWiki
maven
org.xwiki.platform:xwiki-platform-web
High
over 3 years ago
Improper escaping in XWiki Platform
maven
org.xwiki.platform:xwiki-platform-web
Moderate
over 3 years ago
Information exposure in xwiki-platform
maven
org.xwiki.platform:xwiki-platform-web
Moderate
about 4 years ago
The reset password form reveal users email address
maven
org.xwiki.platform:xwiki-platform-web
Critical
over 4 years ago
XSS Cross Site Scripting
maven
org.xwiki.platform:xwiki-platform-web, org.xwiki.platform:xwiki-platform-oldcore