CNNVD-202506-1787 Information

CNNVD ID

CNNVD-202506-1787

Related CVE

CVE-2025-49583

• CNNVD Published: 2025-06-13

Description (Chinese)

XWiki Platform是XWiki开源的一套用于创建Web协作应用程序的Wiki平台。 XWiki Platform存在安全漏洞，该漏洞源于用户可创建包含恶意模板的文档，可能导致发送垃圾邮件。

Description (English)

XWiki Platform is an open source of XWiki ’ s Wiki platform for creating a Web collaborative application. There is a security loophole in XWiki Platform, which stems from the fact that a user can create a document containing a malicious template that may lead to spam.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

XWiki

Published

2025-06-13

Last Modified

2026-02-24

References

https://github.com/xwiki/xwiki-platform/commit/3d96bf3ceb167bf0213d63f0be1f7e1732eb0a92 https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-ff6v-w58f-v97w https://jira.xwiki.org/browse/XWIKI-22471 https://access.redhat.com/security/cve/cve-2025-49583

Patch

https://www.xwiki.org/xwiki/bin/view/Download/