CVE-2025-49584 | xwiki-platform up to 16.4.6/16.10.2 REST Endpoint insertion of sensitive information into sent data

Inserito da Angelo Barbosa | Giu 13, 2025 | CVE

A vulnerability has been found in xwiki-platform up to 16.4.6/16.10.2 and classified as problematic. This vulnerability affects unknown code of the component REST Endpoint. The manipulation leads to insertion of sensitive information into sent data.

This vulnerability was named CVE-2025-49584. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-49584 | xwiki-platform up to 16.4.6/16.10.2 REST Endpoint insertion of sensitive information into sent data

Post correlati

CVE-2025-25156 | Stanko Metodiev Quote Comments Plugin up to 2.2.1 on WordPress cross-site request forgery

CVE-2024-6755 | Social Auto Poster Plugin up to 5.3.14 on WordPress Post authorization

CVE-2024-25846 | MyPrestaModules Product Catalog Import Module up to 6.7.0 on PrestaShop unrestricted upload

CVE-2024-31040 | NanoMQ 0.21.7 Hexstreams mqtt_parser.c get_var_integer buffer overflow