10Eyl
CVE-2024-45591 | xwiki-platform up to 15.10.8/16.3.0-rc-0 REST API history authorization (GHSA-pvmm-55r5-g3mm)
A vulnerability was found in xwiki-platform up to 15.10.8/16.3.0-rc-0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /xwiki/rest/wikis/xwiki/spaces/Main/pages/WebHome/history of the component REST API. The manipulation leads to missing authorization. This vulnerability is known as CVE-2024-45591. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.