| Reporter | Title | Published | Views | Family All 21 |
|---|---|---|---|---|
| Exploit for CVE-2025-32429 | 26 Jul 202510:06 | – | githubexploit | |
| Exploit for SQL Injection in Xwiki | 12 Apr 202622:35 | – | githubexploit | |
| Exploit for CVE-2025-32429 | 25 Jul 202517:14 | – | githubexploit | |
| Exploit for CVE-2025-32429 | 28 Jul 202506:48 | – | githubexploit | |
| The vulnerability of the getdeleteddocuments.vm template in the XWiki platform, a collaborative web application. This allows attackers to execute arbitrary code. | 29 Jul 202500:00 | – | bdu_fstec | |
| CVE-2025-32429 | 25 Jul 202517:19 | – | circl | |
| XWiki Platform SQL注入漏洞 | 24 Jul 202500:00 | – | cnnvd | |
| CVE-2025-32429 | 24 Jul 202522:22 | – | cve | |
| CVE-2025-32429 XWiki Platform vulnerable to SQL injection through getdeleteddocuments.vm template sort parameter | 24 Jul 202522:22 | – | cvelist | |
| XWiki 14 - SQL Injection via getdeleteddocuments.vm | 28 Jul 202500:00 | – | exploitdb |
id: CVE-2025-32429
info:
name: XWiki Platform - SQL Injection
author: ritikchaddha
severity: critical
description: |
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. In versions 9.4-rc-1 through 16.10.5 and 17.0.0-rc-1 through 17.2.2, it's possible for anyone to inject SQL using the parameter sort of the getdeleteddocuments.vm. It's injected as is as an ORDER BY value.
impact: |
Authenticated attackers with access to the deleted documents trash feature could inject SQL code, leading to data leakage, database modification, or further compromise of the application.
remediation: |
Upgrade to XWiki Platform version 16.10.6 and 17.3.0-rc-1. (or newer) which addresses this vulnerability. Always validate and sanitize user-controlled input for query parameters.
reference:
- https://jira.xwiki.org/browse/XWIKI-23093
- https://nvd.nist.gov/vuln/detail/CVE-2025-32429
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2025-32429
epss-score: 0.8541
epss-percentile: 0.99692
cwe-id: CWE-89
cpe: cpe:2.3:a:xwiki:xwiki:*:*:*:*:*:*:*:*
metadata:
verified: true
max-request: 1
vendor: xwiki
product: xwiki
shodan-query: html:"data-xwiki-reference"
fofa-query: body="data-xwiki-reference"
tags: cve,cve2025,xwiki,hqli,sqli,vkev
http:
- method: GET
path:
- "{{BaseURL}}/xwiki/rest/liveData/sources/liveTable/entries?sourceParams.template=getdeleteddocuments.vm&sort=injected"
matchers-condition: and
matchers:
- type: dsl
dsl:
- 'contains_all(body, "Exception", "org.xwiki.livedata.LiveDataException", "HqlQueryScriptService")'
- 'contains(content_script_type, "text/javascript")'
- 'status_code == 500'
condition: and
# digest: 4b0a00483046022100ef2454ec1d77abf3da5bbbb1201918f34a1ebecf1607b14fbbf0ef932b36db2a02210086ef7c8d464e3f772d0a7b9a3d950c6a91751860b21e4bdd450b8aa48b4db4ed:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation