all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

CVE-2023-29508 (xwiki)

Add to bookmarks
April 16, 2023, 8:15 a.m. |

National Vulnerability Database web.nvd.nist.gov

XWiki Commons are technical libraries common to several other top level XWiki projects. A user without script rights can introduce a stored XSS by using the Live Data macro, if the last author of the content of the page has script rights. This has been patched in XWiki 14.10, 14.4.7, and 13.10.11.

author commons cve data live macro projects rights script stored xss technical xss

Visit resource

More from web.nvd.nist.gov / National Vulnerability Database

CVE-2023-45955 (lightstrip_firmware) 6 months, 1 week ago | web.nvd.nist.gov
attackers cve denial of service issue +1
CVE-2023-40101 (android) 6 months, 1 week ago | web.nvd.nist.gov
android check collapse cve +7
CVE-2023-21377 (android) 6 months, 1 week ago | web.nvd.nist.gov
android bypass cve disclosure +8
CVE-2023-21380 (android) 6 months, 1 week ago | web.nvd.nist.gov
android bluetooth buffer buffer overflow +9
CVE-2023-21382 (android) 6 months, 1 week ago | web.nvd.nist.gov
access android check cve +11
CVE-2023-21381 (android) 6 months, 1 week ago | web.nvd.nist.gov
android arbitrary code code code execution +10
CVE-2023-21385 (android) 6 months, 1 week ago | web.nvd.nist.gov
android corruption cve disclosure +7
CVE-2023-21387 (android) 6 months, 1 week ago | web.nvd.nist.gov
android backup bypass cve +11
CVE-2023-21389 (android) 6 months, 1 week ago | web.nvd.nist.gov
android bypass check cve +10

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Junior Cybersecurity Analyst - 3346195

@ TCG | 725 17th St NW, Washington, DC, USA
View on infosec-jobs.com

Cyber Intelligence, Senior Advisor

@ Peraton | Chantilly, VA, United States
View on infosec-jobs.com

Consultant Cybersécurité H/F - Innovative Tech

@ Devoteam | Marseille, France
View on infosec-jobs.com

Manager, Internal Audit (GIA Cyber)

@ Standard Bank Group | Johannesburg, South Africa
View on infosec-jobs.com

Staff DevSecOps Engineer

@ Raft | San Antonio, TX (Local Remote)
View on infosec-jobs.com

Domain Leader Cybersecurity

@ Alstom | Bengaluru, KA, IN
View on infosec-jobs.com
View more jobs