5 matches found
EUVD-2023-0368
Malicious code in bioql PyPI...
XWiki Platform: Password hash might be leaked by diff once the xobject holding them is deleted
Impact It is possible to access the hash of a password by using the diff feature of the history whenever the object storing the password is deleted. Using that vulnerability it's possible for an attacker to have access to the hash password of a user if they have rights to edit the users' page. No...
CVE-2023-29527
CVE-2023-29527 affects XWiki Platform. A user lacking script/Programming rights could insert groovy script content into a profile or document via the wiki editor; saving the document would cause the server to execute that groovy code, enabling code execution. The issue is tied to XWiki’s handling...
CVE-2023-22457 org.xwiki.contrib:application-ckeditor-ui vulnerable to Remote Code Execution via Cross-Site Request Forgery
CKEditor Integration UI adds support for editing wiki pages using CKEditor. Prior to versions 1.64.3,t he CKEditor.HTMLConverter document lacked a protection against Cross-Site Request Forgery CSRF, allowing to execute macros with the rights of the current user. If a privileged user with...
GHSA-CVX5-M8VG-VXGC Arbitrary filesystem write access from velocity.
Impact The velocity scripts is not properly sandboxed against using the Java File API to perform read or write operations on the filesystem. Now writing an attacking script in velocity requires the Script rights in XWiki so not all users can use it, and it also requires finding an XWiki API which...