VYPR

Maven package

org.xwiki.contrib/xwiki-application-admintools

pkg:maven/org.xwiki.contrib/xwiki-application-admintools

Vulnerabilities (2)

  • CVE-2023-48293HigNov 20, 2023
    affected < 4.5.1fixed 4.5.1

    The XWiki Admin Tools Application provides tools to help the administration of XWiki. Prior to version 4.5.1, a cross-site request forgery vulnerability in the query on XWiki tool allows executing arbitrary database queries on the database of the XWiki installation. Among other t

  • CVE-2023-48292CriNov 20, 2023
    affected >= 4.4, < 4.5.1fixed 4.5.1

    The XWiki Admin Tools Application provides tools to help the administration of XWiki. Starting in version 4.4 and prior to version 4.5.1, a cross site request forgery vulnerability in the admin tool for executing shell commands on the server allows an attacker to execute arbitrar