Exposición de XWiki
Wikis334
score de exposición
39
sitios usan
1
en explotación
121
críticos
CVEs
245 resultadosCVE-2025-49586HIGHXWiki allows remote code execution through preview of XClass changes in AWM editorEPSS 0.6%CVE-2023-45137CRITICALXWiki Platform XSS with edit right in the create document form for existing pagesEPSS 0.6%CVE-2023-37277CRITICALXWiki Platform vulnerable to cross-site request forgery (CSRF) via the REST APIEPSS 0.6%CVE-2021-32730MEDIUMNo CSRF protection on the password change formEPSS 0.6%CVE-2026-33137CRITICALXWiki Platform has an Unauthenticated XAR Import via REST /wikis/{wikiName}EPSS 0.6%CVE-2025-32430MEDIUMXWiki Platform contains Reflected XSS vulnerability in two templatesEPSS 0.6%CVE-2023-29205CRITICALorg.xwiki.platform:xwiki-platform-rendering-xwiki vulnerable to stored cross-site scripting via HTML and raw macroEPSS 0.6%CVE-2023-37910HIGHorg.xwiki.platform:xwiki-platform-attachment-api vulnerable to Missing Authorization on Attachment MoveEPSS 0.6%CVE-2023-29515HIGHCross-site scripting (XSS) in xwiki-platformEPSS 0.6%CVE-2023-26056MEDIUMXWiki Platform allows macro execution as any user without programming rights through the context macroEPSS 0.6%CVE-2023-34466MEDIUMXWiki Platform's tags on non-viewable pages can be revealed to usersEPSS 0.6%CVE-2025-54385HIGHXWiki Platform's searchDocuments API allows for SQL injectionEPSS 0.6%CVE-2024-55876MEDIUMXWiki's scheduler in subwiki allows scheduling operations for any main wiki userEPSS 0.6%CVE-2024-46979MEDIUMData leak of notification filters of users in XWiki PlatformEPSS 0.5%CVE-2024-31986CRITICALXWiki Platform CSRF remote code execution through scheduler job's document referenceEPSS 0.5%CVE-2026-40105MEDIUMXWiki has Reflected Cross-Site Scripting (XSS) in its page history compare functionalityEPSS 0.5%CVE-2023-40572CRITICALXWiki Platform vulnerable to CSRF privilege escalation/RCE via the create actionEPSS 0.5%CVE-2026-33229HIGHXWiki Platform affected by remote code execution with script right through unprotected Velocity scripting APIEPSS 0.5%CVE-2025-29926HIGHThe WikiManager REST API allows any user to create wikisEPSS 0.5%CVE-2023-29520MEDIUMPage render failure due to broken translations in xwiki-platformEPSS 0.5%
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →