PT-2025-10115 · Xwiki · Xwiki Confluence Migrator Pro

Publicado

2025-03-07

·

Atualizado

2025-03-08

·

CVE-2025-27604

CVSS v2.0

7.8

Alta

VetorAV:N/AC:L/Au:N/C:C/I:N/A:N
Name of the Vulnerable Software and Affected Versions XWiki Confluence Migrator Pro versions prior to 1.11.7
Description The application's homepage is publicly accessible, allowing guests to download packages that may contain sensitive information.
Recommendations For versions prior to 1.11.7, update to version 1.11.7 to fix the issue.

Exploit

Correção

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-200

Identificadores relacionados

BDU:2025-10720
CVE-2025-27604
GHSA-3W9F-2PPH-J5VC

Produtos afetados

Xwiki Confluence Migrator Pro