GHSA-p93c-h8qm-7256

GitHub Security Advisory

Improper escaping in XWiki Platform

✓ GitHub Reviewed HIGH Has CVE

XWiki Platform before 12.8 mishandles escaping in the property displayer.

Maven org.xwiki.platform:xwiki-platform-web

Affected versions: 0 (fixed in 12.8)

CVE-2020-13654

GHSA ID

GHSA-p93c-h8qm-7256

Published

February 9, 2022 10:32 PM

Last Modified

May 2, 2024 7:36 PM

CVSS Score

7.5 /10

Primary Ecosystem

Maven

Primary Package

org.xwiki.platform:xwiki-platform-web

GitHub Reviewed

✓ Yes

Last updated: September 23, 2025 6:31 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.