CNNVD-202506-1781 Information
CNNVD ID
CNNVD-202506-1781
Related CVE
- CNNVD Published: 2025-06-13
Description (Chinese)
XWiki Platform是XWiki开源的一套用于创建Web协作应用程序的Wiki平台。 XWiki Platform 8.2版本、7.4.5至17.1.0-rc-1版本、16.10.4版本和16.4.7版本存在安全漏洞,该漏洞源于页面可能获得脚本或编程权限,可能导致执行恶意脚本。
Description (English)
XWiki Platform is an open source of XWiki ’ s Wiki platform for creating a Web collaborative application. XWiki Platform 8.2, 7.4.5 to 17.1.0-rc-1, 16.10.4 and 16.4.7 have security loopholes, which stem from the possibility that pages may be given scripts or programming privileges that may lead to the implementation of malicious scripts.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
XWiki
Published
2025-06-13
Last Modified
2026-02-24
References
https://github.com/xwiki/xwiki-platform/commit/ab209acd780da69a4c5ff77ff011efd698273cec https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-jm43-hrq7-r7w6 https://jira.xwiki.org/browse/XWIKI-22836 https://access.redhat.com/security/cve/cve-2025-49580
Patch
https://www.xwiki.org/xwiki/bin/view/Download/
Share on: