{"vulnerability": "CVE-2023-32070", "sightings": [{"uuid": "aa0c9412-3658-4342-9188-37ccef83eefb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32070", "type": "seen", "source": "https://t.me/cibsecurity/63825", "content": "\u203c CVE-2023-32070 \u203c\n\nXWiki Platform is a generic wiki platform. Prior to version 14.6-rc-1, HTML rendering didn't check for dangerous attributes/attribute values. This allowed cross-site scripting (XSS) attacks via attributes and link URLs, e.g., supported in XWiki syntax. This has been patched in XWiki 14.6-rc-1. There are no known workarounds apart from upgrading to a fixed version.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-10T22:14:34.000000Z"}, {"uuid": "9303d3df-7527-4fb1-be5b-762816efb2ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32070", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lwpcbpcdne25", "content": "", "creation_timestamp": "2025-08-18T21:02:47.976699Z"}]}