Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4
CVE-2023-36477
- EPSS 1.82%
- Published 30.06.2023 19:15:09
- Last modified 21.11.2024 08:09:47
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Any user with edit rights can edit all pages in the `CKEditor' space. This makes it possible to perform a variety of harmful actions, such as rem...
8.8
CVE-2023-22457
- EPSS 6%
- Published 04.01.2023 15:15:09
- Last modified 21.11.2024 07:44:50
CKEditor Integration UI adds support for editing wiki pages using CKEditor. Prior to versions 1.64.3,t he `CKEditor.HTMLConverter` document lacked a protection against Cross-Site Request Forgery (CSRF), allowing to execute macros with the rights of t...
1