Security Advisory

CVE-2023-35151

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-06-23 16:33:01

Last updated 2024-11-27 20:47:29

Assigner GitHub_M

State PUBLISHED

Description

XWiki Platform is a generic wiki platform. Starting in version 7.3-milestone-1 and prior to versions 14.4.8, 14.10.6, and 15.1, ny user can call a REST endpoint and obtain the obfuscated passwords, even when the mail obfuscation is activated. The issue has been patched in XWiki 14.4.8, 14.10.6, and 15.1. There is no known workaround.

← Browse all CVEs View on cve.org ↗