Lucene search

PRIOn knowledge basePRION:CVE-2023-29525

HistoryApr 19, 2023 - 12:15 a.m.

Code injection

2023-04-1900:15:00

PRIOn knowledge base

www.prio-n.com

xwiki

code injection

runtime services

endpoint

privilege escalation

vulnerability

patch

upgrade

escaping

workaround

9 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.7%

JSON

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Affected versions of xwiki are subject to code injection in the since parameter of the /xwiki/bin/view/XWiki/Notifications/Code/LegacyNotificationAdministration endpoint. This provides an XWiki syntax injection attack via the since-parameter, allowing privilege escalation from view to programming rights and subsequent code execution privilege. The vulnerability has been patched in XWiki 15.0-rc-1, 14.10.3, 14.4.8 and 14.10.3. Users are advised to upgrade. Users unable to upgrade may modify the page XWiki.Notifications.Code.LegacyNotificationAdministration to add the missing escaping. For versions < 14.6-rc-1 a workaround is to modify the file <xwikiwebapp>/templates/distribution/eventmigration.wiki to add the missing escaping.

CPENameOperatorVersion
xwikige14.5
xwikilt14.10.3
xwikilt14.4.8

Name	Operator	Version
xwiki	ge	14.5
xwiki	lt	14.10.3
xwiki	lt	14.4.8

References

github.com/xwiki/xwiki-platform/commit/6d74e2e4aa03d19f0be385ab63ae9e0f0e90a766

github.com/xwiki/xwiki-platform/commit/8e7c7f90f2ddaf067cb5b83b181af41513028754

github.com/xwiki/xwiki-platform/security/advisories/GHSA-jgg7-w2rj-58cj

jira.xwiki.org/browse/XWIKI-20287