VYPR

Maven package

org.xwiki.platform/xwiki-platform-realtime-ui

pkg:maven/org.xwiki.platform/xwiki-platform-realtime-ui

Vulnerabilities (1)

  • CVE-2024-31988Apr 10, 2024
    affected >= 13.9-rc-1, < 14.10.19fixed 14.10.19

    XWiki Platform is a generic wiki platform. Starting in version 13.9-rc-1 and prior to versions 4.10.19, 15.5.4, and 15.10-rc-1, when the realtime editor is installed in XWiki, it allows arbitrary remote code execution with the interaction of an admin user with programming right.