CNNVD-202512-1766 Information
CNNVD ID
CNNVD-202512-1766
Related CVE
- CNNVD Published: 2025-12-10
Description (Chinese)
XWiki Platform是XWiki开源的一套用于创建Web协作应用程序的Wiki平台。 XWiki Platform 16.10.10及之前版本、17.0.0-rc-1至17.4.3版本和17.5.0-rc-1至17.6.0版本存在安全漏洞,该漏洞源于缺少请求限制,可能导致服务不可用。
Description (English)
XWiki Platform is an open source of XWiki ’ s Wiki platform for creating a Web collaborative application. XWiki Platform 16.10.10 and earlier versions, 17.0.0-rc-1 to 17.4.3 and 17.5.0-rc-1 to 17.6.0 contain security loopholes that stem from lack of request restrictions and may result in non-availability of services.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
XWiki
Published
2025-12-10
Last Modified
2026-02-24
References
https://github.com/xwiki/xwiki-platform/commit/e3c47745195fb445b054537be86f5c01ee69558b https://jira.xwiki.org/browse/XWIKI-23355 https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-cc84-q3v3-mhgf https://access.redhat.com/security/cve/cve-2025-66473
Patch
https://www.xwiki.org/xwiki/bin/view/Download/
Share on: