Maven package
com.xwiki.confluencepro/application-confluence-migrator-pro-ui
pkg:maven/com.xwiki.confluencepro/application-confluence-migrator-pro-ui
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-27603 | Cri | 9.1 | >= 1.0, < 1.2.0 | 1.2.0 | Mar 7, 2025 | XWiki Confluence Migrator Pro helps admins to import confluence packages into their XWiki instance. A user that doesn't have programming rights can execute arbitrary code due to an unescaped translation when creating a page using the Migration Page template. This vulnerability is | |
| CVE-2025-27604 | — | < 1.11.7 | 1.11.7 | Mar 7, 2025 | XWiki Confluence Migrator Pro helps admins to import confluence packages into their XWiki instance. The homepage of the application is public which enables a guest to download the package which might contain sensitive information. This vulnerability is fixed in 1.11.7. |
- affected >= 1.0, < 1.2.0fixed 1.2.0
XWiki Confluence Migrator Pro helps admins to import confluence packages into their XWiki instance. A user that doesn't have programming rights can execute arbitrary code due to an unescaped translation when creating a page using the Migration Page template. This vulnerability is
- CVE-2025-27604Mar 7, 2025affected < 1.11.7fixed 1.11.7
XWiki Confluence Migrator Pro helps admins to import confluence packages into their XWiki instance. The homepage of the application is public which enables a guest to download the package which might contain sensitive information. This vulnerability is fixed in 1.11.7.