pkg:maven/org.xwiki.platform/xwiki-platform-rendering-async-macro
Type
maven
Namespace
org.xwiki.platform
Name
xwiki-platform-rendering-async-macro
Known advisories, vulnerabilities and fixes for org.xwiki.platform/xwiki-platform-rendering-async-macro package.
Critical
2
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | >= 14.5, < 14.9 >= 14.0, < 14.4.6 >= 11.6-rc-1, < 13.10.10 |
CVE-2023-26471
|
 MAVEN:GHSA-9CQM-5WF7-WCJ7
|
XWiki Platform users may execute anything with superadmin right through comments and async macro | critical |
2023-03-03T22:49:37
(18 months ago) |
|
| Fixed | = 14.9 = 14.4.6 = 13.10.10 |
CVE-2023-26471
|
MAVEN:GHSA-9CQM-5WF7-WCJ7
|
XWiki Platform users may execute anything with superadmin right through comments and async macro | critical |
2023-03-03T22:49:37
(18 months ago) |
|
| Affected | >= 14.5, < 14.10.3 >= 14.0-rc-1, < 14.4.8 >= 10.11.1, < 13.10.11 |
CVE-2023-29526
|
MAVEN:GHSA-GPQ5-7P34-VQX5
|
XWiki Platform's async and display macro allow displaying and interacting with any document in restricted mode | critical |
2023-04-20T22:24:46
(17 months ago) |
|
| Fixed | = 14.10.3 = 14.4.8 = 13.10.11 |
CVE-2023-29526
|
MAVEN:GHSA-GPQ5-7P34-VQX5
|
XWiki Platform's async and display macro allow displaying and interacting with any document in restricted mode | critical |
2023-04-20T22:24:46
(17 months ago) |