RCE in Xwiki-contrib Application-blog

CVE-2025-58365

The XWiki blog application allows users of the XWiki platform to create and manage blog posts. Prior to version 9.14, the blog application in XWiki allowed remote code execution for any user who has edit right on any page. Normally, these…

EPSS: 0.005 (40.9th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References