Description

XWiki Confluence Migrator Pro helps admins to import confluence packages into their XWiki instance. The homepage of the application is public which enables a guest to download the package which might contain sensitive information. This vulnerability is fixed in 1.11.7.

INFO

Published Date :

2025-03-07T16:11:32.475Z

Last Modified :

2025-03-07T17:56:42.640Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2025-27604 vulnerability.

Vendors Products
Xwiki
  • Confluence Migrator
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-27604.

URL Resource
https://github.com/xwikisas/application-confluence-migrator-pro/commit/6ced42b1f341fd0ce6734fc58c7d694da5f365fb cve-icon cve-icon
https://github.com/xwikisas/application-confluence-migrator-pro/security/advisories/GHSA-3w9f-2pph-j5vc cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact