VYPR

Maven package

com.xwiki.confluencepro/application-confluence-migrator-pro-ui

pkg:maven/com.xwiki.confluencepro/application-confluence-migrator-pro-ui

Vulnerabilities (2)

  • CVE-2025-27603CriMar 7, 2025
    affected >= 1.0, < 1.2.0fixed 1.2.0

    XWiki Confluence Migrator Pro helps admins to import confluence packages into their XWiki instance. A user that doesn't have programming rights can execute arbitrary code due to an unescaped translation when creating a page using the Migration Page template. This vulnerability is

  • CVE-2025-27604Mar 7, 2025
    affected < 1.11.7fixed 1.11.7

    XWiki Confluence Migrator Pro helps admins to import confluence packages into their XWiki instance. The homepage of the application is public which enables a guest to download the package which might contain sensitive information. This vulnerability is fixed in 1.11.7.