pkg:maven/org.xwiki.platform/xwiki-platform-distribution-war

Type maven

Namespace org.xwiki.platform

Name xwiki-platform-distribution-war

Known advisories, vulnerabilities and fixes for org.xwiki.platform/xwiki-platform-distribution-war package.

Repository: https://mvnrepository.com/artifact/org.xwiki.platform/xwiki-platform-distribution-war

Critical 2

High 1

Type	Version	Distribution	# CVEs	# Advisory ID	Title	Severity	Published
Affected	>= 15.6-rc-1, < 15.8-rc-1 >= 15.0-rc-1, < 15.5.3 >= 14.10, < 14.10.18		CVE-2024-21651	MAVEN:GHSA-8959-RFXH-R4J4	XWiki vulnerable to Denial of Service attack through attachments	high	2024-01-08T16:39:47 (8 months ago)
Fixed	= 15.8-rc-1 = 15.5.3 = 14.10.18		CVE-2024-21651	MAVEN:GHSA-8959-RFXH-R4J4	XWiki vulnerable to Denial of Service attack through attachments	high	2024-01-08T16:39:47 (8 months ago)
Affected	>= 14.5, < 14.10.4 >= 2.2-milestone-1, < 14.4.8		CVE-2023-32071	MAVEN:GHSA-J9H5-VCGV-2JFM	XWiki Platform vulnerable to RXSS via editor parameter - importinline template	critical	2023-05-09T17:46:22 (16 months ago)
Fixed	= 14.10.4 = 14.4.8		CVE-2023-32071	MAVEN:GHSA-J9H5-VCGV-2JFM	XWiki Platform vulnerable to RXSS via editor parameter - importinline template	critical	2023-05-09T17:46:22 (16 months ago)
Affected	>= 14.5, < 14.6-rc-1 >= 14.0-rc-1, < 14.4.8 >= 12.6.1, < 13.10.11		CVE-2023-29525	MAVEN:GHSA-JGG7-W2RJ-58CJ	XWiki Platform vulnerable to privilege escalation from view right on XWiki.Notifications.Code.LegacyNotificationAdministration	critical	2023-04-20T22:25:42 (17 months ago)
Fixed	= 14.6-rc-1 = 14.4.8 = 13.10.11		CVE-2023-29525	MAVEN:GHSA-JGG7-W2RJ-58CJ	XWiki Platform vulnerable to privilege escalation from view right on XWiki.Notifications.Code.LegacyNotificationAdministration	critical	2023-04-20T22:25:42 (17 months ago)