VYPR

Maven package

org.xwiki.platform/xwiki-platform-panels-ui

pkg:maven/org.xwiki.platform/xwiki-platform-panels-ui

Vulnerabilities (3)

  • CVE-2023-29214Apr 16, 2023
    affected >= 1.1-M2, < 13.10.11fixed 13.10.11

    XWiki Commons are technical libraries common to several other top level XWiki projects. Any user with edit rights can execute arbitrary Groovy, Python or Velocity code in XWiki leading to full access to the XWiki installation. The root cause is improper escaping of the included p

  • CVE-2023-29212Apr 16, 2023
    affected >= 14.0-rc-1, < 14.4.7fixed 14.4.7

    XWiki Commons are technical libraries common to several other top level XWiki projects. Any user with edit rights can execute arbitrary Groovy, Python or Velocity code in XWiki leading to full access to the XWiki installation. The root cause is improper escaping of the included p

  • CVE-2023-27479Mar 7, 2023
    affected >= 6.3-milestone-2, < 13.10.11fixed 13.10.11

    XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. In affected versions any user with view rights can execute arbitrary Groovy, Python or Velocity code in XWiki leading to full access to the XWiki installation. The root cause