Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:4 a.m.4 views

CVE-2023-29513

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. If guest has view right on any document. It's possible to create a new user using the distribution/firstadminuser.wiki in the wrong context. This vulnerability has been patched in XWiki...

5CVSS6.8AI score0.00672EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/04/18 11:46 p.m.8 views

CVE-2023-29513 Users can be created even when registration is disabled without validation via the template macro in xwiki-platform

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. If guest has view right on any document. It's possible to create a new user using the distribution/firstadminuser.wiki in the wrong context. This vulnerability has been patched in XWiki...

5CVSS5.1AI score0.00672EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/04/18 11:46 p.m.24 views

CVE-2023-29513 Users can be created even when registration is disabled without validation via the template macro in xwiki-platform

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. If guest has view right on any document. It's possible to create a new user using the distribution/firstadminuser.wiki in the wrong context. This vulnerability has been patched in XWiki...

5CVSS5.4AI score0.00672EPSS
Exploits1References3
CVE
CVE
added 2023/04/18 11:46 p.m.53 views

CVE-2023-29513

XWiki Platform (CVE-2023-29513) allows an attacker to create a new user if a guest has view rights on any document, by exploiting the distribution/firstadminuser.wiki in the wrong context. Root cause: improper handling of guest access combined with the template macro enables user registration whe...

5CVSS4.7AI score0.00672EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder