org.xwiki.platform:xwiki-platform-web-war vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the org.xwiki.platform:xwiki-platform-web-war package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
M Improper Restriction of Rendered UI Layers or Frames	[,17.4.6)
H Cross-site Scripting (XSS)	[16.0.0-rc-1,16.0.0)[15.6-rc-1,15.10.6)[15.0-rc-1,15.5.5)[4.2-milestone-3,14.10.21)
C Remote Code Execution (RCE)	[9.2-rc-1,14.10.21)[15.0-rc-1,15.5.5)[15.6-rc-1,15.10.2)
C Improper Encoding or Escaping of Output	[,14.10.12)[15.0-rc-1,15.5-rc-1)
C Cross-site Request Forgery (CSRF)	[1.8,14.10.8)[15.0-rc-1,15.2)