XWiki security policy is detailed on the following document: https://dev.xwiki.org/xwiki/bin/view/Community/SecurityPolicy/.
Security: xwiki-contrib/oidc
Security
SECURITY.md
-
It is possible to create a token for any user with just view rightGHSA-f2hf-pfrj-vrm7 published
Oct 6, 2025 by tmortagneCritical -
It is possible to bypass OpenID login by providing a custom providerGHSA-m7gv-v8xx-v47w published
Nov 4, 2022 by tmortagneCritical
Learn more about advisories related to xwiki-contrib/oidc in the GitHub Advisory Database