📦 Xwiki Rendering
by Xwiki
🔍 What is Xwiki Rendering?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
CVE-2023-37908 is a cross-site scripting (XSS) vulnerability in XWiki Rendering that allows attackers to inject arbitrary HTML/JavaScript via malicious links. When exploited against privileged users w...
This vulnerability in XWiki's footnote macro allows privilege escalation from a standard user account to programming rights, leading to remote code execution. When combined with the include macro, att...
CVE-2025-66474 is an HTML injection vulnerability in XWiki Rendering that allows authenticated users to execute arbitrary script macros, leading to remote code execution. Attackers can gain unrestrict...
This reflected XSS vulnerability in XWiki Platform allows attackers to craft malicious URLs that execute arbitrary JavaScript in victims' browsers. If victims have administrative or programming rights...