During independent security research, a CSS injection vulnerability (CVE-2026-26000) was identified in the XWiki platform. XWiki is an open-source enterprise wiki and collaboration platform commonly used for internal documentation and knowledge management. According to XWiki, the platform has over 8,000 active installations and is used by organisations such as Lenovo and Amazon, meaning vulnerabilities can”¦
First seen on securityboulevard.com
Jump to article: securityboulevard.com/2026/02/disclosure-xwiki-css-injection-cve-2026-26000/
