CVE-2025-32974 | xwiki xwiki-platform up to 15.10.7/16.1.x REQUIRED Rights Analysis escape output (GHSA-mvgm-3rw2-7j4r)

Inserito da Angelo Barbosa | Apr 30, 2025 | CVE

A vulnerability was found in xwiki xwiki-platform up to 15.10.7/16.1.x. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component REQUIRED Rights Analysis. The manipulation leads to escaping of output.

This vulnerability is known as CVE-2025-32974. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-32974 | xwiki xwiki-platform up to 15.10.7/16.1.x REQUIRED Rights Analysis escape output (GHSA-mvgm-3rw2-7j4r)

Post correlati

CVE-2025-27515 | Laravel Framework up to 11.44.0/12.1.0 wildcards or matching symbols (GHSA-78fx-h6xr-vch4)

CVE-2024-5107 | Campcodes Complete Web-Based School Management System 1.0 student_payment_details2.php index sql injection

CVE-2024-6194 | itsourcecode Tailoring Management System 1.0 editmeasurement.php id sql injection

CVE-2024-13260 | Drupal Migrate Queue Importer up to 2.1.0 cross-site request forgery