The security policy that applies to all the XWiki Pro extensions is detailed on the following document: https://store.xwiki.com/xwiki/bin/view/Store/SecurityPolicy/ .
Security: xwikisas/macro-pdfviewer
Security
SECURITY.md
-
Preview in WYSIWYG editor allows accessing any PDF document as the last authorGHSA-hph4-7j37-7c97 published
Nov 13, 2024 by ChiuchiuSorinHigh -
The PDF viewer macro allows accessing any attachment without access right checksGHSA-522m-m242-jr9p published
Nov 13, 2024 by ChiuchiuSorinHigh -
The PDF Viewer macro can be used to view PDF attachments with restricted accessGHSA-93qq-2h34-g29f published
Apr 2, 2024 by ChiuchiuSorinHigh -
XSS through the width parameterGHSA-84wx-6vfp-5m6g published
Nov 13, 2024 by ChiuchiuSorinCritical
Learn more about advisories related to xwikisas/macro-pdfviewer in the GitHub Advisory Database