CVE-2025-59954 | KnowageLabs Knowage-Server up to 8.1.26 org.apache.commons.jxpath.JXPathContext MetaService.java code injection

A vulnerability classified as critical has been found in KnowageLabs Knowage-Server up to 8.1.26. Affected is an unknown function of the file MetaService.java of the component org.apache.commons.jxpath.JXPathContext. Performing manipulation results in code injection.

This vulnerability is known as CVE-2025-59954. Remote exploitation of the attack is possible. No exploit is available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More