CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Xwiki: >> Xwiki >> 11.6 Security Vulnerabilities

CVE-2020-11057

In XWiki Platform 7.2 through 11.10.2, registered users without scripting/programming permissions are able to execute python/groovy scripts while editing personal dashboards. This has been fixed 11.3.7 , 11.10.3 and 12.0.

CVSS Score

9.9

EPSS Score

0.018

Published

2020-05-12

Page 18

Vulnerabilities

Vulnerable Software

Xwiki: >> Xwiki >> 11.6 Security Vulnerabilities

Products

Pricing

Contact Us