Xwiki Pdf Viewer Macro — known CVE vulnerabilities
Every CVE whose affected-product data names Xwiki Pdf Viewer Macro, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2024-52300 — CVSS 9.0 (critical): macro-pdfviewer is a PDF Viewer Macro for XWiki using Mozilla pdf.js. The width parameter of the PDF viewer macro isn't properly escaped…
CVE-2024-52298 — CVSS 7.5 (high): macro-pdfviewer is a PDF Viewer Macro for XWiki using Mozilla pdf.js. The PDF Viewer macro allows an attacker to view any attachment using…
CVE-2024-52299 — CVSS 7.5 (high): macro-pdfviewer is a PDF Viewer Macro for XWiki using Mozilla pdf.js. Any user with view right on XWiki.PDFViewerService can access any…