VYPR

Maven package

org.xwiki.platform/xwiki-core-rendering-macro-rss

pkg:maven/org.xwiki.platform/xwiki-core-rendering-macro-rss

Vulnerabilities (1)

  • CVE-2023-29202Apr 15, 2023
    affected >= 1.8, <= 3.0.1

    XWiki Commons are technical libraries common to several other top level XWiki projects. The RSS macro that is bundled in XWiki included the content of the feed items without any cleaning in the HTML output when the parameter `content` was set to `true`. This allowed arbitrary HTM