CVE-2023-29204
published 2023-04-15CVE-2023-29204: XWiki Commons are technical libraries common to several other top level XWiki projects. It is possible to bypass the existing security measures put in place to…
PriorityP339medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EXPLOIT
EPSS
1.76%
75.1th percentile
XWiki Commons are technical libraries common to several other top level XWiki projects. It is possible to bypass the existing security measures put in place to avoid open redirect by using a redirect such as `//mydomain.com` (i.e. omitting the `http:`). It was also possible to bypass it when using URL such as `http:/mydomain.com`. The problem has been patched on XWiki 13.10.10, 14.4.4 and 14.8RC1.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| xwiki | xwiki | — | — |
| xwiki | xwiki | >= 14.4.0 < 14.4.4 | 14.4.4 |
| xwiki | xwiki | 14.5 – 14.7 | — |
| xwiki | xwiki | >= 6.0 < 13.10.10 | 13.10.10 |
| xwiki | xwiki-platform | — | — |
| xwiki | xwiki-platform | — | — |
| xwiki | xwiki-platform | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
org.xwiki.platform:xwiki-platform-oldcore Open Redirect vulnerability
osv·2023-04-12
CVE-2023-29204 [MEDIUM] org.xwiki.platform:xwiki-platform-oldcore Open Redirect vulnerability
org.xwiki.platform:xwiki-platform-oldcore Open Redirect vulnerability
### Impact
It is possible to bypass the existing security measures put in place to avoid open redirect by using a redirect such as `//mydomain.com` (i.e. omitting the `http:`). It was also possible to bypass it when using URL such as `http:/mydomain.com`.
### Patches
The problem has been patched on XWiki 13.10.10, 14.4.4 and 14.8RC1.
### Workarounds
The only way to workaround the bug is by providing a patched jar of xwiki-platform-oldcore containing the following changes: https://github.com/xwiki/xwiki-platform/commit/e4f7f68e93cb08c25632c126356d218abf192d1e#diff-c445f288d5d63424f56ef13f65514ab4e174a72e979b53b88197c2b7def267cf.
### References
* Jira ticket of the reported vulnerability: https://jira.xwiki.org/brows
GHSA
org.xwiki.platform:xwiki-platform-oldcore Open Redirect vulnerability
ghsa·2023-04-12
CVE-2023-29204 [MEDIUM] CWE-601 org.xwiki.platform:xwiki-platform-oldcore Open Redirect vulnerability
org.xwiki.platform:xwiki-platform-oldcore Open Redirect vulnerability
### Impact
It is possible to bypass the existing security measures put in place to avoid open redirect by using a redirect such as `//mydomain.com` (i.e. omitting the `http:`). It was also possible to bypass it when using URL such as `http:/mydomain.com`.
### Patches
The problem has been patched on XWiki 13.10.10, 14.4.4 and 14.8RC1.
### Workarounds
The only way to workaround the bug is by providing a patched jar of xwiki-platform-oldcore containing the following changes: https://github.com/xwiki/xwiki-platform/commit/e4f7f68e93cb08c25632c126356d218abf192d1e#diff-c445f288d5d63424f56ef13f65514ab4e174a72e979b53b88197c2b7def267cf.
### References
* Jira ticket of the reported vulnerability: https://jira.xwiki.org/brows
No detection rules found.
Nuclei
XWiki - Open Redirect
nuclei·CVSS 6.1
CVE-2023-29204 [MEDIUM] XWiki - Open Redirect
XWiki - Open Redirect
XWiki Commons are technical libraries common to several other top level XWiki projects. It is possible to bypass the existing security measures put in place to avoid open redirect by using a redirect such as `//mydomain.com` (i.e. omitting the `http:`). It was also possible to bypass it when using URL such as `http:/mydomain.com`. The problem has been patched on XWiki 13.10.10, 14.4.4 and 14.8RC1.
Template:
id: CVE-2023-29204
info:
name: XWiki - Open Redirect
author: ritikchaddha
severity: medium
description: |
XWiki Commons are technical libraries common to several other top level XWiki projects. It is possible to bypass the existing security measures put in place to avoid open redirect by using a redirect such as `//mydomain.com` (i.e. omitting the `http:`). It
https://github.com/xwiki/xwiki-platform/commit/e4f7f68e93cb08c25632c126356d218abf192d1e#diff-c445f288d5d63424f56ef13f65514ab4e174a72e979b53b88197c2b7def267cfhttps://github.com/xwiki/xwiki-platform/security/advisories/GHSA-xwph-x6xj-wggvhttps://jira.xwiki.org/browse/XWIKI-10309https://jira.xwiki.org/browse/XWIKI-19994https://github.com/xwiki/xwiki-platform/commit/e4f7f68e93cb08c25632c126356d218abf192d1e#diff-c445f288d5d63424f56ef13f65514ab4e174a72e979b53b88197c2b7def267cfhttps://github.com/xwiki/xwiki-platform/security/advisories/GHSA-xwph-x6xj-wggvhttps://jira.xwiki.org/browse/XWIKI-10309https://jira.xwiki.org/browse/XWIKI-19994
2023-04-15
Published