VYPR

Maven package

org.xwiki.platform/xwiki-platform-sharepage-api

pkg:maven/org.xwiki.platform/xwiki-platform-sharepage-api

Vulnerabilities (1)

  • CVE-2023-35155Jun 23, 2023
    affected >= 2.6-rc-2, < 14.4.8fixed 14.4.8

    XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Users are able to forge an URL with a payload allowing to inject Javascript in the page (XSS). For instance, the following URL execute an `alter` on the browser: `