VYPR

Maven package

org.xwiki.platform/xwiki-platform-refactoring-default

pkg:maven/org.xwiki.platform/xwiki-platform-refactoring-default

Vulnerabilities (1)

  • CVE-2025-49580Jun 13, 2025
    affected >= 17.0.0-rc-1, < 17.1.0-rc-1fixed 17.1.0-rc-1

    XWiki is a generic wiki platform. From 8.2 and 7.4.5 until 17.1.0-rc-1, 16.10.4, and 16.4.7, pages can gain script or programming rights when they contain a link and the target of the link is renamed or moved. This might lead to execution of scripts contained in xobjects that sho