16.10.1
13 years ago
20 days ago
Known vulnerabilities in the org.xwiki.rendering:xwiki-rendering-macro-footnotes package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for freeVulnerability | Vulnerable Version |
---|---|
Affected versions of this package are vulnerable to Privilege Escalation via cross-site scripting in the footnote macro. This is particularly exploitable when combined with the include macro, impacting the confidentiality, integrity, and availability of the entire XWiki installation. This is only exploitable if the footnote macro is used in combination with the include macro. How to fix Privilege Escalation? Upgrade | [,14.10.6)[15.0-rc-1,15.1-rc-1) |