Maven package
org.xwiki.contrib/xwiki-application-admintools
pkg:maven/org.xwiki.contrib/xwiki-application-admintools
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-48293 | Hig | 8.8 | < 4.5.1 | 4.5.1 | Nov 20, 2023 | The XWiki Admin Tools Application provides tools to help the administration of XWiki. Prior to version 4.5.1, a cross-site request forgery vulnerability in the query on XWiki tool allows executing arbitrary database queries on the database of the XWiki installation. Among other t | |
| CVE-2023-48292 | Cri | 9.6 | >= 4.4, < 4.5.1 | 4.5.1 | Nov 20, 2023 | The XWiki Admin Tools Application provides tools to help the administration of XWiki. Starting in version 4.4 and prior to version 4.5.1, a cross site request forgery vulnerability in the admin tool for executing shell commands on the server allows an attacker to execute arbitrar |
- affected < 4.5.1fixed 4.5.1
The XWiki Admin Tools Application provides tools to help the administration of XWiki. Prior to version 4.5.1, a cross-site request forgery vulnerability in the query on XWiki tool allows executing arbitrary database queries on the database of the XWiki installation. Among other t
- affected >= 4.4, < 4.5.1fixed 4.5.1
The XWiki Admin Tools Application provides tools to help the administration of XWiki. Starting in version 4.4 and prior to version 4.5.1, a cross site request forgery vulnerability in the admin tool for executing shell commands on the server allows an attacker to execute arbitrar