xwiki 漏洞列表
共找到 82 个与 xwiki 相关的漏洞
- POC 2025-12-12CVE-2025-55749: XWiki - Information Disclosure
- 2025-12-05XWiki Jetty /webapps/xwiki/WEB-INF/web.xml 文件读取漏洞(CVE-2025-55749)
- 2025-12-03XWiki Platform 文件读取漏洞(CVE-2025-55749)
- 2025-11-28XWiki /rest/wikis/xwiki/query SQL 注入漏洞(CVE-2025-32969)
- POC 2025-11-14CVE-2025-51991: XWiki <= 17.3.0 - Server-Side Template Injection (SSTI)
- POC 2025-11-12CVE-2025-51990: XWiki – Stored Cross-Site Scripting (XSS)
- POC 2025-11-07CVE-2025-32429: XWiki Platform - SQL Injection
- POC 2025-11-07CVE-2025-52472: XWiki - HQL Injection
- 2025-11-03XWiki Platform /bin/register/XWiki/XWikiRegister 代码执行漏洞(CVE-2024-21650)
- 2025-11-03XWiki Platform /bin/ssx/Main/WebHome 目录遍历漏洞(CVE-2025-55748)
- 2025-10-09(CVE-2025-55747) XWiki Platform配置文件信息泄露漏洞
- 2025-10-08(CVE-2025-52472) XWiki REST搜索URL HQL注入漏洞(orderField参数)
- 2025-09-12XWiki Platform /rest/wikis/xwiki/pages 权限绕过漏洞(CVE-2025-29925)
- 2025-09-12XWiki /webjars 目录遍历漏洞(CVE-2025-55747)
- 2025-09-11xwiki 路径遍历漏洞(CVE-2025-55747)
- 2025-09-09XWiki /xwiki/webjars/ 存在路径遍历漏洞
- 2025-09-09XWiki /bin/ssx/Main/WebHome 存在路径遍历漏洞
- 2025-09-04XWiki 路径遍历漏洞(CVE-2025-55748)
- 2025-09-03xwiki CVE-2025-32969 sql注入
- 2025-09-03(CVE-2025-55748) XWiki配置文件信息泄露漏洞
- POC 2025-08-01CVE-2022-24819: XWiki < 12.10.11, 13.4.4 & 13.9-rc-1 - Information Disclosure
- POC 2025-08-01CVE-2023-29204: XWiki - Open Redirect
- POC 2025-08-01CVE-2023-29506: XWiki >= 13.10.8 - Cross-Site Scripting
- POC 2025-08-01CVE-2023-32068: XWiki - Open Redirect
- POC 2025-08-01CVE-2023-35155: XWiki - Cross-Site Scripting
- POC 2025-08-01CVE-2023-35156: XWiki >= 6.0-rc-1 - Cross-Site Scripting
- POC 2025-08-01CVE-2023-35158: XWiki - Cross-Site Scripting
- POC 2025-08-01CVE-2023-35159: XWiki >= 3.4-milestone-1 - Cross-Site Scripting
- POC 2025-08-01CVE-2023-35160: XWiki >= 2.5-milestone-2 - Cross-Site Scripting
- POC 2025-08-01CVE-2023-35161: XWiki >= 6.2-milestone-1 - Cross-Site Scripting
- POC 2025-08-01CVE-2023-35162: XWiki < 14.10.5 - Cross-Site Scripting
- POC 2025-08-01CVE-2023-37462: XWiki Platform - Remote Code Execution
- POC 2025-08-01CVE-2023-45136: XWiki < 14.10.14 - Cross-Site Scripting
- POC 2025-08-01CVE-2023-46732: XWiki < 14.10.14 - Cross-Site Scripting
- POC 2025-08-01CVE-2023-48241: XWiki < 4.10.15 - Information Disclosure
- POC 2025-08-01CVE-2023-50719: XWiki < 4.10.15 - Sensitive Information Disclosure
- POC 2025-08-01CVE-2023-50720: XWiki < 4.10.15 - Email Disclosure
- POC 2025-08-01CVE-2024-21650: XWiki < 4.10.20 - Remote code execution
- POC 2025-08-01CVE-2024-31982: XWiki < 4.10.20 - Remote code execution
- POC 2025-08-01CVE-2024-45591: XWiki Platform - Unauthorized Document History Access
- POC 2025-08-01CVE-2025-24893: XWiki Platform - Remote Code Execution
- POC 2025-08-01CVE-2025-29925: XWiki REST API - Private Pages Disclosure
- POC 2025-08-01CVE-2025-32430: XWiki Platform - Cross-Site Scripting
- POC 2025-08-01CVE-2025-32969: XWiki REST API Query - SQL Injection
- POC 2025-08-01CVE-2025-32970: XWiki WYSIWYG API - Open Redirect
- POC 2025-08-01CVE-2025-46554: XWiki REST API - Attachments Disclosure
- POC 2025-08-01CVE-2025-54125: XWiki XML View - Sensitive Information Exposure
- POC 2025-08-01CVE-2025-55747: XWiki Platform - Information Disclosure
- POC 2025-08-01CVE-2025-55748: XWiki Platform - Path Traversal
- 2025-07-25XWiki getdeleteddocuments.vm SQL注入漏洞
- 2025-04-25XWiki Platform /bin/view/ 代码执行漏洞(CVE-2023-37462)
- 2025-03-07XWiki SolrSearchMacros /bin/get/Main/SolrSearch 远程代码执行漏洞(CVE-2025-24893)
- 2025-02-25XWiki history接口未授权访问(CVE-2024-45591)
- 2025-02-25XWiki SolrSearchMacros 远程代码执行漏洞复现(CVE-2025-24893)
- 2025-02-21CVE-2025-24893 XWiki 存在远程代码执行漏洞
- 2024-08-14XWiki XWikiRegister 远程代码执行漏洞
- 2024-07-04XWiki Platform 未授权 代码注入漏洞
- 2024-06-28XWiki /xwiki/bin/get/Main/DatabaseSearch 命令执行漏洞
- 2024-06-28XWiki Platform CVE-2024-31982 远程代码执行漏洞
- 2024-06-19XWiki < 4.10.15 存在信息泄露漏洞(CVE-2023-48241)
- 2024-06-19XWiki < 4.10.20 DatabaseSearch代码执行漏洞(CVE-2024-31982)
- 2024-05-31XWiki.org XWiki导入栏反射型跨站脚本漏洞
- 2024-05-23XWiki SearchAdmin CVE-2023-50721 命令注入漏洞
- 2024-04-12XWiki Platform DatabaseSearch 远程代码执行漏洞
- 2024-03-21XWiki Platform AdminSheet CVE-2023-46731远程代码执行漏洞
- 2024-02-29XWiki Change Request CVE-2023-45138 跨站脚本漏洞
- 2024-02-22XWiki.org XWiki Tags.xml命令注入漏洞
- 2024-02-22XWiki.org XWiki deleteAttachment存储型XSS漏洞
- 2024-02-22XWiki.org XWiki moveStep1.vm 跨站脚本漏洞
- 2024-02-22XWiki.org XWiki MentionsMacro.xml 代码注入漏洞
- 2024-02-22XWiki.org XWiki XWikiServerClassSheet.xml 代码注入漏洞
- 2024-02-22XWiki.org XWiki filename参数存储型XSS漏洞
- 2024-02-07XWiki.org XWiki SchedulerJobSheet 代码注入漏洞
- 2024-02-07XWiki.org XWiki xwiki-platform-flamingo-theme-ui 远程代码执行漏洞
- 2024-02-07XWiki.org XWiki NotificationRSSService 代码注入漏洞
- 2024-02-07XWiki.org XWiki LegacyNotificationAdministration since 代码注入漏洞
- 2024-02-07XWiki.org XWiki AttachmentSelector docname 代码注入漏洞
- 2024-02-07XWiki TextAreaClass displayView代码注入漏洞
- 2024-02-07XWiki timezone 存储型跨站脚本漏洞
- 2024-02-07XWiki.org XWiki InvitationGuestActions 代码注入漏洞
- 2023-08-07XWiki 平台 SkinsCode.XWikiSkinsSheet文件存在命令执行(CVE-2023-37462)
- 2023-06-20XWiki 权限提升漏洞(CVE-2023-35166)