High severityNVD Advisory· Published Dec 31, 2020· Updated Aug 4, 2024
CVE-2020-13654
CVE-2020-13654
Description
XWiki Platform before 12.8 mishandles escaping in the property displayer.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.xwiki.platform:xwiki-platform-webMaven | < 12.8 | 12.8 |
Affected products
2- XWiki Platform/XWiki Platformdescription
Patches
Vulnerability mechanics
References
7- github.com/advisories/GHSA-p93c-h8qm-7256ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2020-13654ghsaADVISORY
- cve.anastasi.link/cve-2020-13654ghsaWEB
- cve.nstsec.com/cve-2020-13654ghsaWEB
- github.com/xwiki/xwiki-platform/compare/xwiki-platform-12.7.1...xwiki-platform-12.8ghsaWEB
- github.com/xwiki/xwiki-platform/pull/1315ghsaWEB
- jira.xwiki.org/browse/XWIKI-17374ghsaWEB
News mentions
0No linked articles in our index yet.