2 matches found
The vulnerability of the XWiki Platform, related to improper code generation management, allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the XWiki Platform lies in improper code generation management. Exploiting this vulnerability allows an attacker, operating remotely, to compromise the confidentiality, integrity, and accessibility of protected information through the use of the section URL parameter...
Code injection
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. XWiki doesn't properly escape the section URL parameter that is used in the code for displaying administration sections. This allows any user with read access to the document XWiki.AdminSheet ...