org.xwiki.platform:xwiki-platform-livedata-macro

Maven2 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting org.xwiki.platform:xwiki-platform-livedata-macropage 1 of 1

CVE-2023-26480HIGHCVSS 8.9EG 8.9✓ Fixed in 14.9
2023-03-02
XWiki Platform is a generic wiki platform. Starting in version 12.10, a user without script rights can introduce a stored cross-site scripting by using the Live Data macro. This has been patched in XWiki 14.9, 14.4.7, and 13.10.10. There a…
CVE-2023-29508HIGHCVSS 8.9EG 8.9✓ Fixed in 14.10
2023-04-16
XWiki Commons are technical libraries common to several other top level XWiki projects. A user without script rights can introduce a stored XSS by using the Live Data macro, if the last author of the content of the page has script rights. …

Check whether org.xwiki.platform:xwiki-platform-livedata-macro is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for org.xwiki.platform:xwiki-platform-livedata-macro CVEs against the assets you own.

Start Free Scan →