Maven package
org.xwiki.contrib.jira/jira-macro-default
pkg:maven/org.xwiki.contrib.jira/jira-macro-default
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-31487 | Hig | 7.7 | >= 4.2, < 8.5.6 | 8.5.6 | Apr 3, 2025 | The XWiki JIRA extension provides various integration points between XWiki and JIRA (macros, UI, CKEditor plugin). If the JIRA macro is installed, any logged in XWiki user could edit his/her user profile wiki page and use that JIRA macro, specifying a fake JIRA URL that returns a |
- affected >= 4.2, < 8.5.6fixed 8.5.6
The XWiki JIRA extension provides various integration points between XWiki and JIRA (macros, UI, CKEditor plugin). If the JIRA macro is installed, any logged in XWiki user could edit his/her user profile wiki page and use that JIRA macro, specifying a fake JIRA URL that returns a