CNNVD-202508-405 Information

CNNVD ID

CNNVD-202508-405

Related CVE

CVE-2025-54125

• CNNVD Published: 2025-08-06

Description (Chinese)

XWiki Platform是XWiki开源的一套用于创建Web协作应用程序的Wiki平台。 XWiki Platform存在安全漏洞，该漏洞源于XML导出可能包含密码和电子邮件属性。

Description (English)

XWiki Platform is an open source of XWiki ’ s Wiki platform for creating a Web collaborative application. There is a security loophole in XWiki Platform, which stems from the export of XML that may contain passwords and e-mail properties.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

XWiki

Published

2025-08-06

Last Modified

2026-02-24

References

https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-57q2-6cp4-9mq3 https://jira.xwiki.org/browse/XWIKI-22810 https://github.com/xwiki/xwiki-platform/commit/742ee3482ef6c2bd4ad03d0de9cdd81d0e8f3d59 https://access.redhat.com/security/cve/cve-2025-54125 https://nvd.nist.gov/vuln/detail/CVE-2025-54125

Patch

https://www.xwiki.org/xwiki/bin/view/Main/WebHome