Количество 2
Количество 2
CVE-2023-26474
XWiki Platform is a generic wiki platform. Starting in version 13.10, it's possible to use the right of an existing document content author to execute a text area property. This has been patched in XWiki 14.10, 14.4.7, and 13.10.11. There are no known workarounds.
GHSA-3738-p9x3-mv9r
XWiki Platform vulnerable to privilege escalation via properties with wiki syntax that are executed with wrong author
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-26474 XWiki Platform is a generic wiki platform. Starting in version 13.10, it's possible to use the right of an existing document content author to execute a text area property. This has been patched in XWiki 14.10, 14.4.7, and 13.10.11. There are no known workarounds. | CVSS3: 9.9 | 1% Низкий | почти 3 года назад |
| GHSA-3738-p9x3-mv9r XWiki Platform vulnerable to privilege escalation via properties with wiki syntax that are executed with wrong author | CVSS3: 9.9 | 1% Низкий | почти 3 года назад |
Уязвимостей на страницу