CNNVD-202508-404 Information

CNNVD ID

CNNVD-202508-404

Related CVE

CVE-2025-54124

• CNNVD Published: 2025-08-06

Description (Chinese)

XWiki Platform是XWiki开源的一套用于创建Web协作应用程序的Wiki平台。 XWiki Platform存在安全漏洞，该漏洞源于数据库列表属性可能泄露密码哈希。

Description (English)

XWiki Platform is an open source of XWiki ’ s Wiki platform for creating a Web collaborative application. There is a security loophole in XWiki Platform, which stems from the possibility that the database list properties may leak the password Hashi.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

XWiki

Published

2025-08-06

Last Modified

2026-02-24

References

https://jira.xwiki.org/browse/XWIKI-22811 https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-r38m-cgpg-qj69 https://github.com/xwiki/xwiki-platform/commit/f2ca8649cba2ed3765061660bf5c7f801afa0b24 https://access.redhat.com/security/cve/cve-2025-54124 https://nvd.nist.gov/vuln/detail/CVE-2025-54124

Patch

https://www.xwiki.org/xwiki/bin/view/Main/WebHome