CVE-2023-29211 Information
Description
XWiki Commons are technical libraries common to several other top level XWiki projects. Any user with view rights WikiManager.DeleteWiki can execute arbitrary Groovy Python or Velocity code in XWiki leading to full access to the XWiki installation. The root cause is improper escaping of the wikiId url parameter. The problem has been patched on XWiki 13.10.11 14.4.7 and 14.10.
Reference
https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-w7v9-fc49-4qg4
https://github.com/xwiki/xwiki-platform/commit/ba4c76265b0b8a5e2218be400d18f08393fe1428#diff-64f39f5f2cc8c6560a44e21a5cfd509ef00e8a2157cd9847c9940a2e08ea43d1R63-R64
https://jira.xwiki.org/browse/XWIKI-20297
XWiki
Commons
are
technical
libraries
common
to
several
other
top
level
XWiki
projects.
Any
user
with
view
rights
WikiManager.DeleteWiki
can
execute
arbitrary
Groovy
Python
or
Velocity
code
in
XWiki
leading
to
full
access
to
the
XWiki
installation.
The
root
cause
is
improper
escaping
of
the
wikiId
url
parameter.
The
problem
has
been
patched
on
XWiki
13.10.11 14.4.7 and 14.10.
Share on: