CNNVD-202509-239 Information
CNNVD ID
CNNVD-202509-239
Related CVE
- CNNVD Published: 2025-09-03
Description (Chinese)
XWiki Platform是XWiki开源的一套用于创建Web协作应用程序的Wiki平台。 XWiki Platform 4.2-milestone-2至16.10.6版本存在安全漏洞,该漏洞源于配置文件可通过jsx和sx端点访问。
Description (English)
XWiki Platform is an open source of XWiki ’ s Wiki platform for creating a Web collaborative application. XWiki Platform 4.2-milestone-2-16.10.6 contains a security loophole, which stems from the fact that the configuration file can be accessed through jsx and sx endpoints.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
XWiki
Published
2025-09-03
Last Modified
2026-02-24
References
https://github.com/xwiki/xwiki-platform/commit/9e7b4c03f2143978d891109a17159f73d4cdd318#diff-ee78930a9ac5ea586179fe8ab88a5fd58e369d175927d1e88a0b4dbc3ebcbf1eR62 https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-m63c-3rmg-r2cf https://jira.xwiki.org/browse/XWIKI-23109
Patch
https://www.xwiki.org/xwiki/bin/view/Main/WebHome
Share on: