xwiki 厂商相关 243 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。
XWiki 是一款基于 Java 的企业级开源 Wiki 平台,核心用于构建知识库与协作系统。其历史漏洞多集中于远程代码执行、跨站脚本及越权访问,部分源于插件或 API 组件的输入验证缺陷。尽管项目持续强化安全机制,但累计 243 条 CVE 记录显示其攻击面较广。用户需及时更新版本并严格审查自定义扩展,以防范已知风险,确保企业数据交互的安全性。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2023-45136 | XWiki Platform 跨站脚本漏洞 — xwiki-platformCWE-79 | 9.7 | Critical | 2023-10-25 |
| CVE-2023-45135 | XWiki Platform 安全漏洞 — xwiki-platformCWE-116 | 9.1 | Critical | 2023-10-25 |
| CVE-2023-45134 | XWiki Platform 跨站脚本漏洞 — xwiki-platformCWE-79 | 9.1 | Critical | 2023-10-25 |
| CVE-2023-37913 | XWiki Platform 路径遍历漏洞 — xwiki-platformCWE-23 | 10.0 | Critical | 2023-10-25 |
| CVE-2023-37912 | XWiki Rendering 安全漏洞 — xwiki-renderingCWE-270 | 10.0 | Critical | 2023-10-25 |
| CVE-2023-37911 | XWiki Platform 安全漏洞 — xwiki-platformCWE-668 | 6.5 | Medium | 2023-10-25 |
| CVE-2023-37910 | XWiki Platform 安全漏洞 — xwiki-platformCWE-862 | 8.1 | High | 2023-10-25 |
| CVE-2023-37909 | XWiki Platform 代码注入漏洞 — xwiki-platformCWE-95 | 10.0 | Critical | 2023-10-25 |
| CVE-2023-37908 | XWiki Rendering 跨站脚本漏洞 — xwiki-renderingCWE-83 | 9.1 | Critical | 2023-10-25 |
| CVE-2023-41046 | XWiki Platform 安全漏洞 — xwiki-platformCWE-862 | 6.3 | Medium | 2023-09-01 |
| CVE-2023-40573 | XWiki Platform 访问控制错误漏洞 — xwiki-platformCWE-284 | 9.1 | Critical | 2023-08-24 |
| CVE-2023-40572 | XWiki Platform 跨站请求伪造漏洞 — xwiki-platformCWE-352 | 9.1 | Critical | 2023-08-24 |
| CVE-2023-40177 | XWiki Platform 代码注入漏洞 — xwiki-platformCWE-95 | 9.9 | Critical | 2023-08-23 |
| CVE-2023-40176 | XWiki Platform 跨站脚本漏洞 — xwiki-platformCWE-79 | 9.1 | Critical | 2023-08-23 |
| CVE-2023-37914 | XWiki Platform 代码注入漏洞 — xwiki-platformCWE-94 | 9.9 | Critical | 2023-08-17 |
| CVE-2023-38509 | XWiki Platform 安全漏洞 — xwiki-platformCWE-402 | 4.3 | Medium | 2023-07-27 |
| CVE-2023-37462 | XWiki Platform 安全漏洞 — xwiki-platformCWE-74 | 10.0 | Critical | 2023-07-14 |
| CVE-2023-37277 | XWiki Platform 跨站请求伪造漏洞 — xwiki-platformCWE-352 | 9.7 | Critical | 2023-07-10 |
| CVE-2023-36477 | XWiki Platform 跨站脚本漏洞 — xwiki-platformCWE-79 | 9.1 | Critical | 2023-06-30 |
| CVE-2023-36468 | XWiki Platform 安全漏洞 — xwiki-platformCWE-459 | 10.0 | Critical | 2023-06-29 |
| CVE-2023-36469 | XWiki Platform 注入漏洞 — xwiki-platformCWE-74 | 10.0 | Critical | 2023-06-29 |
| CVE-2023-36470 | XWiki Platform 注入漏洞 — xwiki-platformCWE-74 | 10.0 | Critical | 2023-06-29 |
| CVE-2023-36471 | XWiki Commons 跨站脚本漏洞 — xwiki-commonsCWE-74 | 9.1 | Critical | 2023-06-29 |
| CVE-2023-35162 | XWiki Platform 跨站脚本漏洞 — xwiki-platformCWE-79 | 9.7 | Critical | 2023-06-23 |
| CVE-2023-35161 | XWiki Platform 跨站脚本漏洞 — xwiki-platformCWE-87 | 9.7 | Critical | 2023-06-23 |
| CVE-2023-35160 | XWiki Platform 跨站脚本漏洞 — xwiki-platformCWE-87 | 9.7 | Critical | 2023-06-23 |
| CVE-2023-35159 | XWiki Platform 跨站脚本漏洞 — xwiki-platformCWE-87 | 9.7 | Critical | 2023-06-23 |
| CVE-2023-35158 | XWiki Platform 安全漏洞 — xwiki-platformCWE-87 | 9.7 | Critical | 2023-06-23 |
| CVE-2023-35157 | XWiki Platform 跨站脚本漏洞 — xwiki-platformCWE-80 | 8.5 | High | 2023-06-23 |
| CVE-2023-35156 | XWiki Platform 跨站脚本漏洞 — xwiki-platformCWE-87 | 9.7 | Critical | 2023-06-23 |
本页汇总了 xwiki 厂商截至目前公开的全部 243 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。