PT-2025-10115 · Xwiki · Xwiki Confluence Migrator Pro

Published

2025-03-07

·

Updated

2025-03-08

·

CVE-2025-27604

CVSS v2.0

7.8

High

VectorAV:N/AC:L/Au:N/C:C/I:N/A:N
Name of the Vulnerable Software and Affected Versions XWiki Confluence Migrator Pro versions prior to 1.11.7
Description The application's homepage is publicly accessible, allowing guests to download packages that may contain sensitive information.
Recommendations For versions prior to 1.11.7, update to version 1.11.7 to fix the issue.

Exploit

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

BDU:2025-10720
CVE-2025-27604
GHSA-3W9F-2PPH-J5VC

Affected Products

Xwiki Confluence Migrator Pro