VYPR

Maven package

org.xwiki.platform/xwiki-platform-tool-configuration-resources

pkg:maven/org.xwiki.platform/xwiki-platform-tool-configuration-resources

Vulnerabilities (1)

  • CVE-2021-43841Feb 4, 2022
    affected >= 13.0, < 13.3RC1fixed 13.3RC1

    XWiki is a generic wiki platform offering runtime services for applications built on top of it. When using default XWiki configuration, it's possible for an attacker to upload an SVG containing a script executed when executing the download action on the file. This problem has bee