Maven package
org.xwiki.platform/xwiki-platform-notifications-notifiers-default
pkg:maven/org.xwiki.platform/xwiki-platform-notifications-notifiers-default
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-49587 | — | >= 15.9-rc-1, < 15.10.16 | 15.10.16 | Jun 13, 2025 | XWiki is an open-source wiki software platform. When a user without script right creates a document with an XWiki.Notifications.Code.NotificationDisplayerClass object, and later an admin edits and saves that document, the possibly malicious content of that object is output as raw | ||
| CVE-2025-49583 | — | < 15.10.16 | 15.10.16 | Jun 13, 2025 | XWiki is a generic wiki platform. When a user without script right creates a document with an `XWiki.Notifications.Code.NotificationEmailRendererClass` object, and later an admin edits and saves that document, the email templates in this object will be used for notifications. No |
- CVE-2025-49587Jun 13, 2025affected >= 15.9-rc-1, < 15.10.16fixed 15.10.16
XWiki is an open-source wiki software platform. When a user without script right creates a document with an XWiki.Notifications.Code.NotificationDisplayerClass object, and later an admin edits and saves that document, the possibly malicious content of that object is output as raw
- CVE-2025-49583Jun 13, 2025affected < 15.10.16fixed 15.10.16
XWiki is a generic wiki platform. When a user without script right creates a document with an `XWiki.Notifications.Code.NotificationEmailRendererClass` object, and later an admin edits and saves that document, the email templates in this object will be used for notifications. No