pkg:maven/org.xwiki.platform/xwiki-platform-flamingo-theme-ui
Type
maven
Namespace
org.xwiki.platform
Name
xwiki-platform-flamingo-theme-ui
Known advisories, vulnerabilities and fixes for org.xwiki.platform/xwiki-platform-flamingo-theme-ui package.
Critical
3
High
1
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | >= 14.5, < 14.10 >= 14.0-rc-1, < 14.4.7 >= 7.2-rc-1, < 13.10.11 |
CVE-2023-29509
|
 MAVEN:GHSA-F4V8-58F6-MWJ4
|
org.xwiki.platform:xwiki-platform-flamingo-theme-ui Eval Injection vulnerability | critical |
2023-04-12T20:36:42
(17 months ago) |
|
| Fixed | = 14.10 = 14.4.7 = 13.10.11 |
CVE-2023-29509
|
MAVEN:GHSA-F4V8-58F6-MWJ4
|
org.xwiki.platform:xwiki-platform-flamingo-theme-ui Eval Injection vulnerability | critical |
2023-04-12T20:36:42
(17 months ago) |
|
| Affected | >= 13.5.0, < 13.10.3 >= 13.0.0, < 13.4.7 < 12.10.11 |
CVE-2022-29251
|
MAVEN:GHSA-VMHH-XH3G-J992
|
Cross-site Scripting in the Flamingo theme manager | high |
2022-05-25T22:40:57
(2 years ago) |
|
| Fixed | = 13.10.3 = 13.4.7 = 12.10.11 |
CVE-2022-29251
|
MAVEN:GHSA-VMHH-XH3G-J992
|
Cross-site Scripting in the Flamingo theme manager | high |
2022-05-25T22:40:57
(2 years ago) |
|
| Affected | >= 14.5, < 14.10 >= 14.0-rc-1, < 14.4.7 >= 12.6.6, < 13.10.11 |
CVE-2023-30537
|
MAVEN:GHSA-VRR8-FP7C-7QGP
|
org.xwiki.platform:xwiki-platform-flamingo-theme-ui vulnerable to privilege escalation | critical |
2023-04-12T20:36:51
(17 months ago) |
|
| Fixed | = 14.10 = 14.4.7 = 13.10.11 |
CVE-2023-30537
|
MAVEN:GHSA-VRR8-FP7C-7QGP
|
org.xwiki.platform:xwiki-platform-flamingo-theme-ui vulnerable to privilege escalation | critical |
2023-04-12T20:36:51
(17 months ago) |
|
| Affected | >= 14.5, < 14.9-rc-1 >= 14.0, < 14.4.6 >= 6.2.4, < 13.10.10 |
CVE-2023-26477
|
MAVEN:GHSA-X2QM-R4WX-8GPG
|
org.xwiki.platform:xwiki-platform-flamingo-theme-ui Eval Injection vulnerability | critical |
2023-03-03T22:51:02
(18 months ago) |
|
| Fixed | = 14.9-rc-1 = 14.4.6 = 13.10.10 |
CVE-2023-26477
|
MAVEN:GHSA-X2QM-R4WX-8GPG
|
org.xwiki.platform:xwiki-platform-flamingo-theme-ui Eval Injection vulnerability | critical |
2023-03-03T22:51:02
(18 months ago) |