VYPR

Maven package

org.xwiki.platform/xwiki-platform-security-authentication-script

pkg:maven/org.xwiki.platform/xwiki-platform-security-authentication-script

Vulnerabilities (1)

  • CVE-2021-32729Jul 1, 2021
    affected >= 11.6, < 12.6.8fixed 12.6.8

    XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. A vulnerability exists in versions prior to 12.6.88, 12.10.4, and 13.0. The script service method used to reset the authentication failures record can be executed by any user