4 matches found
CVE-2023-29213
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. In affected versions of org.xwiki.platform:xwiki-platform-logging-ui it is possible to trick a user with programming rights into visiting a constructed url where e.g., by embedding an image wi...
CVE-2023-29213
CVE-2023-29213 affects XWiki Platform, specifically the org.xwiki.platform:xwiki-platform-logging-ui component. The vulnerability allows an attacker to trick a user with programming rights into visiting a crafted URL, which can cause remote code execution via injection (e.g., evaluating embedded ...
CVE-2023-29213 org.xwiki.platform:xwiki-platform-logging-ui Injection vulnerability
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. In affected versions of org.xwiki.platform:xwiki-platform-logging-ui it is possible to trick a user with programming rights into visiting a constructed url where e.g., by embedding an image wi...
org.xwiki.platform:xwiki-platform-logging-ui Eval Injection vulnerability
Impact Steps to reproduce: It is possible to trick a user with programming rights into visiting...