Description
XWiki Platform before 12.8 mishandles escaping in the property displayer.
Remediation
References
Related Vulnerabilities
SharePoint CVE-2022-37961 Vulnerability (CVE-2022-37961)
WordPress Plugin EmbedStories-Display social media stories Cross-Site Scripting (0.7.4)
Jetty Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2021-28163)
WordPress Plugin Appointment Booking Calendar SQL Injection (1.1.23)