Количество 2
Количество 2
CVE-2023-35166
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. It's possible to execute any wiki content with the right of the TipsPanel author by creating a tip UI extension. This has been patched in XWiki 15.1-rc-1 and 14.10.5.
GHSA-h7cw-44vp-jq7h
XWiki Platform vulnerable to privilege escalation (PR) from account through TipsPanel
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-35166 XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. It's possible to execute any wiki content with the right of the TipsPanel author by creating a tip UI extension. This has been patched in XWiki 15.1-rc-1 and 14.10.5. | CVSS3: 9.9 | 30% Средний | больше 2 лет назад |
| GHSA-h7cw-44vp-jq7h XWiki Platform vulnerable to privilege escalation (PR) from account through TipsPanel | CVSS3: 8.8 | 30% Средний | больше 2 лет назад |
Уязвимостей на страницу