org.xwiki.platform:xwiki-platform-oldcore vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2023-29523Criticalorg.xwiki.platform:xwiki-platform-oldcore: XWiki Platform vulnerable to code injection in display method used in user profilesCVE-2023-29204Mediumorg.xwiki.platform:xwiki-platform-oldcore: org.xwiki.platform:xwiki-platform-oldcore Open Redirect vulnerabilityCVE-2023-29507Criticalorg.xwiki.platform:xwiki-platform-oldcore: org.xwiki.platform:xwiki-platform-oldcore makes Incorrect Use of Privileged APIs with DocumentAuthorsCVE-2023-29208Highorg.xwiki.platform:xwiki-platform-oldcore: org.xwiki.platform:xwiki-platform-oldcore vulnerable to data leak through deleted documents CVE-2023-26470Mediumorg.xwiki.platform:xwiki-platform-oldcore: XWiki Platform subject to Uncontrolled Resource ConsumptionCVE-2023-26474Criticalorg.xwiki.platform:xwiki-platform-oldcore: XWiki Platform vulnerable to privilege escalation via properties with wiki syntax that are executed with wrong authorCVE-2022-41932Highorg.xwiki.platform:xwiki-platform-oldcore: Creation of new database tables through login form on PostgreSQLCVE-2022-41929Mediumorg.xwiki.platform:xwiki-platform-oldcore: Missing Authorization in User#setDisabledStatus in org.xwiki.platform:xwiki-platform-oldcoreCVE-2022-31166Highorg.xwiki.platform:xwiki-platform-oldcore: XWiki.WebHome vulnerable to Improper Privilege Management in XWiki resolving groupsCVE-2022-36090Highorg.xwiki.platform:xwiki-platform-oldcore: XWiki Platform Improper Authorization check for inactive usersCVE-2022-36092Highorg.xwiki.platform:xwiki-platform-oldcore: XWiki Platform Old Core vulnerable to Authentication Bypass Using the Login ActionCVE-2022-29253Loworg.xwiki.platform:xwiki-platform-oldcore: Path Traversal in XWiki PlatformCVE-2006-7223Mediumorg.xwiki.platform:xwiki-platform-oldcore: XWiki Remote Code ExecutionCVE-2021-43841Mediumorg.xwiki.platform:xwiki-platform-oldcore: Cross-site Scripting by SVG upload in xwiki-platformCVE-2022-23621Mediumorg.xwiki.platform:xwiki-platform-oldcore: Missing authorization in xwiki-platformCVE-2022-23618Mediumorg.xwiki.platform:xwiki-platform-oldcore: URL Redirection to Untrusted Site ('Open Redirect')CVE-2022-23617Mediumorg.xwiki.platform:xwiki-platform-oldcore: Missing authorization in xwiki-platformCVE-2022-23615Mediumorg.xwiki.platform:xwiki-platform-oldcore: Partial authorization bypass on document save in xwiki-platformCVE-2021-29459Criticalorg.xwiki.platform:xwiki-platform-oldcore: XSS Cross Site ScriptingCVE-2020-15252Highorg.xwiki.platform:xwiki-platform-oldcore: RCE in XWikiCVE-2020-15171Loworg.xwiki.platform:xwiki-platform-oldcore: Users with SCRIPT right can execute arbitrary code in XWiki

Stop the waste.
Protect your environment with Kodem.