Xwiki Pro Macros
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Xwiki Pro Macros.
By the Year
In 2026 there have been 0 vulnerabilities in Xwiki Pro Macros. Pro Macros did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 1 | 8.80 |
It may take a day or so for new Pro Macros vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Xwiki Pro Macros Security Vulnerabilities
XWiki Viewpdf Macro RCE before 1.10.1
CVE-2024-42489
8.8 - High
- August 12, 2024
Pro Macros provides XWiki rendering macros. Missing escaping in the Viewpdf macro allows any user with view right on the `CKEditor.HTMLConverter` page or edit or comment right on any page to perform remote code execution. Other macros like Viewppt are vulnerable to the same kind of attack. This vulnerability is fixed in 1.10.1.
Injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Xwiki Pro Macros or by Xwiki? Click the Watch button to subscribe.
