VYPR

Maven package

org.xwiki.platform/xwiki-platform-tool-jetty-resources

pkg:maven/org.xwiki.platform/xwiki-platform-tool-jetty-resources

Vulnerabilities (1)

  • CVE-2025-55749Dec 1, 2025
    affected >= 16.7.0, < 16.10.11fixed 16.10.11

    XWiki is an open-source wiki software platform. From 16.7.0 to 16.10.11, 17.4.4, or 17.7.0, in an instance which is using the XWiki Jetty package (XJetty), a context is exposed to statically access any file located in the webapp/ folder. It allows accessing files which might cont