critical
10
CWE
94
Advisory Published
Advisory Published
Updated

CVE-2023-46243: Code execution via the edit action in XWiki platform

First published: Tue Nov 07 2023(Updated: )

### Impact In XWiki Platform, it's possible for a user to execute any content with the right of an existing document's content author, provided the user have edit right on it. The reason for this is that the edit action sets the content without modifying the content author. To reproduce: * Log in as a user without programming or script right. * Open the URL `<xwiki-host>/xwiki/bin/edit/<document>/?content=%7B%7Bgroovy%7D%7Dprintln%28%22Hello+from+Groovy%21%22%29%7B%7B%2Fgroovy%7D%7D&xpage=view`, where `<xwiki-host>` is the URL of your XWiki installation and `<document>` is the path to a document whose content author has programming right (or script right) and on which the current user has edit right. The text "Hello from Groovy!" is displayed in the page content, showing that the Groovy macro has been executed, which should not be the case for a user without programming right. ### Patches This has been patched in XWiki 14.10.6 and 15.2RC1. ### Workarounds There are no known workarounds for it. ### References * https://jira.xwiki.org/browse/XWIKI-20385 * https://github.com/xwiki/xwiki-platform/commit/a0e6ca083b36be6f183b9af33ae735c1e02010f4 ### For more information If you have any questions or comments about this advisory: * Open an issue in [Jira XWiki.org](https://jira.xwiki.org/) * Email us at [Security Mailing List](mailto:security@xwiki.org)

Credit: security-advisories@github.com security-advisories@github.com

Affected SoftwareAffected VersionHow to fix
maven/org.xwiki.platform:xwiki-platform-oldcore>=1.0<14.10.6
14.10.6
maven/org.xwiki.platform:xwiki-platform-oldcore>=15.0<15.2-rc-1
15.2-rc-1
Xwiki Xwiki>=1.0<14.10.6
Xwiki Xwiki>=15.0<15.2
>=1.0<14.10.6
>=15.0<15.2

Remedy

https://github.com/xwiki/xwiki-platform/commit/a0e6ca083b36be6f183b9af33ae735c1e02010f4

Remedy

https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-g2qq-c5j9-5w5w

Remedy

https://jira.xwiki.org/browse/XWIKI-20385

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is CVE-2023-46243?

    CVE-2023-46243 is a vulnerability in XWiki Platform that allows a user to execute any content with the rights of an existing document's content author.

  • How does CVE-2023-46243 impact XWiki Platform?

    CVE-2023-46243 allows a user to execute arbitrary content if they have edit rights on a document with the right of the content author.

  • What is the severity of CVE-2023-46243?

    CVE-2023-46243 has a severity level of critical with a value of 10.

  • Which versions of XWiki Platform are affected by CVE-2023-46243?

    XWiki Platform versions 1.0 to 14.10.6 and versions 15.0 to 15.2-rc-1 are affected by CVE-2023-46243.

  • How can I fix CVE-2023-46243?

    To fix CVE-2023-46243, update XWiki Platform to versions 14.10.6 or 15.2-rc-1.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203