VYPR

Maven package

org.xwiki.platform/xwiki-platform-security-authorization-bridge

pkg:maven/org.xwiki.platform/xwiki-platform-security-authorization-bridge

Vulnerabilities (1)

  • CVE-2025-48063May 21, 2025
    affected >= 16.10.0-rc-1, < 16.10.4fixed 16.10.4

    XWiki is a generic wiki platform. In XWiki 16.10.0, required rights were introduced as a way to limit which rights a document can have. Part of the security model of required rights is that a user who doesn't have a right also cannot define that right as required right. That way,