2 matches found
CVE-2024-56158
creationtimestamp| type| source ---|---|--- 2025-06-12 15:33:50+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/18174...
CVE-2024-56158
XWiki is a generic wiki platform. It's possible to execute any SQL query in Oracle by using the function like DBMSXMLGEN or DBMSXMLQUERY. The XWiki query validator does not sanitize functions that would be used in a simple select and Hibernate allows using any native function in an HQL query. Thi...