org.xwiki.platform:xwiki-platform-administration-ui vulnerabilities

package manager

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the org.xwiki.platform:xwiki-platform-administration-ui package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
M Missing Authorization	[4.2-rc-1,15.10.9)[16.0.0-rc-1,16.4.0-rc-1)
C Eval Injection	[0,)
C Improper Control of Generation of Code ('Code Injection')	[2.3,14.10.15)[15.6-rc-1,15.7-rc-1)[15.0-rc-1,15.5.2)
C Cross-Site Request Forgery (CSRF)	[2.3,14.10.15)[15.0-rc-1,15.5.2)[15.6-rc-1,15.7-rc-1)
C Arbitrary Code Injection	[,14.10.14)[15.0-rc-1,15.5.1)
C Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')	[4.2-milestone-1,13.10.11)[14.5,14.10.1)[14.0-rc-1,14.4.8)
C Privilege Escalation	[,13.10.11)[14.0-rc-1,14.4.8)[14.5,14.10.1)
H Arbitrary Code Execution	[,13.1-rc-1)
H Cross-site Request Forgery (CSRF)	[,12.0.5)[13.0.0,13.2)
M Cross-site Request Forgery (CSRF)	[13.0,13.2-rc-1)[,12.10.5)