CVE-2025-32974 | xwiki xwiki-platform up to 15.10.7/16.1.x REQUIRED Rights Analysis escape output (GHSA-mvgm-3rw2-7j4r)

Inserito da Angelo Barbosa | Apr 30, 2025 | CVE

A vulnerability was found in xwiki xwiki-platform up to 15.10.7/16.1.x. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component REQUIRED Rights Analysis. The manipulation leads to escaping of output.

This vulnerability is known as CVE-2025-32974. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-32974 | xwiki xwiki-platform up to 15.10.7/16.1.x REQUIRED Rights Analysis escape output (GHSA-mvgm-3rw2-7j4r)

Post correlati

CVE-2024-12848 | sonalsinha21 SKT Page Builder Plugin up to 4.7 on WordPress addLibraryByArchive authorization

CVE-2024-0947 | Talya Informatics Elektraweb up to 17.0.67 cookie validation

CVE-2024-20772 | Adobe Media Encoder up to 23.6.4/24.2.1 buffer overflow (apsb24-23)

CVE-2024-40119 | Nepstech NTPL-Xpon1GFEVN 2.0.1 Password Change cross-site request forgery