org.xwiki.commons:xwiki-commons-xml (Maven) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Maven package org.xwiki.commons:xwiki-commons-xml, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (6)
CVE-2023-26055 — CVSS 9.9 (critical): XWiki Commons are technical libraries common to several other top level XWiki projects. Starting in version 3.1-milestone-1, any user can…
CVE-2023-29201 — CVSS 9.0 (critical): XWiki Commons are technical libraries common to several other top level XWiki projects. The "restricted" mode of the HTML cleaner in XWiki…
CVE-2023-29528 — CVSS 9.0 (critical): XWiki Commons are technical libraries common to several other top level XWiki projects. The "restricted" mode of the HTML cleaner in XWiki…
CVE-2023-31126 — CVSS 9.0 (critical): `org.xwiki.commons:xwiki-commons-xml` is an XML library used by the open-source wiki platform XWiki. The HTML sanitizer, introduced in…
CVE-2023-36471 — CVSS 9.0 (critical): Xwiki commons is the common modules used by other XWiki top level projects. The HTML sanitizer that is included in XWiki since version…
CVE-2022-24898 — CVSS 4.9 (medium): org.xwiki.commons:xwiki-commons-xml is a common module used by other XWiki top level projects. Starting in version 2.7 and prior to…