14Oca
CVE-2025-23025 | xwiki-platform up to 15.10.11/16.4.0/16.5.x WYSIWYG Editor extension authorization
A vulnerability classified as problematic was found in xwiki-platform up to 15.10.11/16.4.0/16.5.x. Affected by this vulnerability is an unknown functionality of the component WYSIWYG Editor extension. The manipulation leads to missing authorization. This vulnerability is known as CVE-2025-23025. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.