CNNVD-202512-1769 Information

CNNVD ID

CNNVD-202512-1769

Related CVE

CVE-2025-66472

• CNNVD Published: 2025-12-10

Description (Chinese)

XWiki Platform是XWiki开源的一套用于创建Web协作应用程序的Wiki平台。 XWiki Platform存在安全漏洞，该漏洞源于容易受到反射型跨站脚本攻击。

Description (English)

XWiki Platform is an open source of XWiki ’ s Wiki platform for creating a Web collaborative application. There is a security gap in XWiki Platform, which stems from the vulnerability of the reflector-type to cross-site script attacks.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

XWiki

Published

2025-12-10

Last Modified

2026-02-24

References

https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-7vpr-jm38-wr7w https://github.com/xwiki/xwiki-platform/commit/cb578b1b2910d06e9dd7581077072d1cfbd280f2 https://jira.xwiki.org/browse/XWIKI-23244 https://access.redhat.com/security/cve/cve-2025-66472

Patch

https://www.xwiki.org/xwiki/bin/view/Download/