VYPR

Maven package

org.xwiki.platform/xwiki-platform-wiki-rest-default

pkg:maven/org.xwiki.platform/xwiki-platform-wiki-rest-default

Vulnerabilities (1)

  • CVE-2025-29926Mar 19, 2025
    affected >= 5.4-rc-1, < 15.10.15fixed 15.10.15

    XWiki Platform is a generic wiki platform. Prior to 15.10.15, 16.4.6, and 16.10.0, any user can exploit the WikiManager REST API to create a new wiki, where the user could become an administrator and so performs other attacks on the farm. Note that this REST API is not bundled in