CVE-2025-32973 | xwiki xwiki-platform up to 15.10.11/16.4.2/16.7.x XWiki.ComponentClass authorization (GHSA-x7wv-5qg4-vmr6)

A vulnerability was found in xwiki xwiki-platform up to 15.10.11/16.4.2/16.7.x. It has been classified as problematic. Affected is the function XWiki.ComponentClass. The manipulation leads to missing authorization.

This vulnerability is traded as CVE-2025-32973. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More