XWiki 1.3 Release Candidate 1
Approved changes feed: RSS · Atom
cpe:2.3:a:xwiki:xwiki:1.3:rc1:*:*:*:*:*:*
part: a version: 1.3 update: rc1
| Vendor | Xwiki (cdc9c0cd-6ac5-5dc0-9f52-915ebd57f20d) |
|---|---|
| Product | Xwiki (2fad5bf8-5703-5dac-bd8d-95a867c2e84d) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:docker/xwiki/xwiki |
purl2cpe | 2026-06-01 10:18:15.715309 |
pkg:github/xwiki/xwiki-platform |
purl2cpe | 2026-06-01 10:18:15.715310 |
pkg:gitlab/q-phillips/xwiki-platform |
purl2cpe | 2026-06-01 10:18:15.715311 |
pkg:xwiki/xwiki |
purl2cpe | 2026-06-01 10:18:15.715313 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-26473 |
vulnerable | 2026-06-03 14:50:59.778334 |
XWiki Platform allows unprivileged users to make arbitrary select queries using DatabaseListProperty and suggest.vm
MEDIUM (6.5)
XWiki Platform is a generic wiki platform. Starting in version 1.3-rc-1, any user with edit right can execute arbitrary database select and access data stored in the database. The problem has been patched in XWiki 13.10.11, 14.4.7, and 14.10. There is no workaround for this vulnerability other than upgrading.
Published: 2023-03-02T18:17:09.152Z
Updated: 2025-03-05T20:46:44.895Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.