CVE-2022-41934 - Critical RCE in XWiki Platform’s Menu Macro—What Happened, How to Exploit, and How to Fix
If you’re running an XWiki instance, here’s a serious heads-up: CVE-2022-41934 exposes a Remote Code Execution (RCE) vulnerability in XWiki’s core menu
CVE-2022-41931 - XWiki-Platform-Icon-UI Eval Injection Vulnerability Explained
XWiki is a popular open-source wiki and knowledge management platform used by thousands of teams and organizations worldwide. However, in late 2022, a serious security
CVE-2022-41935 - How a Simple Query in XWiki Exposed Hidden Documents
XWiki is a flexible, open-source wiki platform that lets you build websites, project documentation, knowledge bases, and even pretty advanced web applications. But sometimes, even
CVE-2022-41928 - How Eval Injection in XWiki Platform's AttachmentSelector.xml Exposed Your Wiki (And How to Safeguard It)
The XWiki platform is a popular open-source wiki engine widely used for knowledge management, document collaboration, and enterprise content. But in late 2022, security researchers
CVE-2022-41927 - How an XWiki CSRF Bug Lets Attackers Mess With Your Tags—And How to Patch It
If you’re running an XWiki-based knowledge base, this post is for you. In November 2022, a major security flaw was reported: CVE-2022-41927. This vulnerability
Episode
00:00:00
00:00:00