CVE-2023-37462
CVE-2023-37462 affects XWiki Platform (SkinsCode.XWikiSkinsSheet). Connected sources confirm an improper escaping vulnerability that allows an injection vector from a crafted non-existing page to obtain programming rights, enabling execution of arbitrary macros (Groovy, Python) and full wiki cont...