VYPR

Maven package

org.xwiki.platform/xwiki-platform-wysiwyg-api

pkg:maven/org.xwiki.platform/xwiki-platform-wysiwyg-api

Vulnerabilities (1)

  • CVE-2025-32970Apr 30, 2025
    affected >= 13.5-rc-1, < 15.10.13fixed 15.10.13

    XWiki is a generic wiki platform. In versions starting from 13.5-rc-1 to before 15.10.13, from 16.0.0-rc-1 to before 16.4.4, and from 16.5.0-rc-1 to before 16.8.0, an open redirect vulnerability in the HTML conversion request filter allows attackers to construct URLs on an XWiki