CVE-2025-66474
- EPSS -
- Veröffentlicht 10.12.2025 21:59:58
- Zuletzt bearbeitet 10.12.2025 22:16:28
XWiki Rendering is a generic rendering system that converts textual input in a given syntax (wiki syntax, HTML, etc) into another syntax (XHTML, etc). Versions 16.10.9 and below, 17.0.0-rc-1 through 17.4.2 and 17.5.0-rc-1 through 17.5.0 have insuffic...
CVE-2025-53836
- EPSS 2.35%
- Veröffentlicht 14.07.2025 23:08:34
- Zuletzt bearbeitet 26.08.2025 17:52:16
XWiki Rendering is a generic rendering system that converts textual input in a given syntax (wiki syntax, HTML, etc) into another syntax (XHTML, etc). Starting in version 4.2-milestone-1 and prior to versions 13.10.11, 14.4.7, and 14.10, the default ...
- EPSS 1.34%
- Veröffentlicht 14.07.2025 23:00:35
- Zuletzt bearbeitet 26.08.2025 17:52:40
XWiki Rendering is a generic rendering system that converts textual input in a given syntax (wiki syntax, HTML, etc) into another syntax (XHTML, etc). Starting in version 5.4.5 and prior to version 14.10, the XHTML syntax depended on the `xdom+xml/cu...
CVE-2023-32070
- EPSS 4.17%
- Veröffentlicht 10.05.2023 18:15:10
- Zuletzt bearbeitet 27.01.2025 18:15:35
XWiki Platform is a generic wiki platform. Prior to version 14.6-rc-1, HTML rendering didn't check for dangerous attributes/attribute values. This allowed cross-site scripting (XSS) attacks via attributes and link URLs, e.g., supported in XWiki synta...