CVE-2023-35161
published 2023-06-23CVE-2023-35161: XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Users are able to forge an URL with a payload allowing…
PriorityP339medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EXPLOIT
EPSS
2.38%
81.8th percentile
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Users are able to forge an URL with a payload allowing to inject Javascript in the page (XSS). It's possible to exploit the DeleteApplication page to perform a XSS, e.g. by using URL such as: > xwiki/bin/view/AppWithinMinutes/DeleteApplication?appName=Menu&resolve=true&xredirect=javascript:alert(document.domain). This vulnerability exists since XWiki 6.2-milestone-1. The vulnerability has been patched in XWiki 14.10.5 and 15.1-rc-1.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| xwiki | xwiki | — | — |
| xwiki | xwiki | >= 6.2.1 < 14.10.5 | 14.10.5 |
| xwiki | xwiki-platform | — | — |
| xwiki | xwiki-platform | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
XWiki Platform vulnerable to reflected cross-site scripting via xredirect parameter in DeleteApplication page
ghsa·2023-06-22
CVE-2023-35161 [CRITICAL] CWE-79 XWiki Platform vulnerable to reflected cross-site scripting via xredirect parameter in DeleteApplication page
XWiki Platform vulnerable to reflected cross-site scripting via xredirect parameter in DeleteApplication page
### Impact
Users are able to forge an URL with a payload allowing to inject Javascript in the page (XSS).
It's possible to exploit the DeleteApplication page to perform a XSS, e.g. by using URL such as:
> xwiki/bin/view/AppWithinMinutes/DeleteApplication?appName=Menu&resolve=true&xredirect=javascript:alert(document.domain)
This vulnerability exists since XWiki 6.2-milestone-1.
### Patches
The vulnerability has been patched in XWiki 14.10.5 and 15.1-rc-1.
### Workarounds
It's possible to workaround the vulnerability by editing the page AppWithinMinutes.DeleteApplication to perform checks on it, but note that the appropriate fix involves new APIs that have been recently introd
OSV
XWiki Platform vulnerable to reflected cross-site scripting via xredirect parameter in DeleteApplication page
osv·2023-06-22
CVE-2023-35161 [CRITICAL] XWiki Platform vulnerable to reflected cross-site scripting via xredirect parameter in DeleteApplication page
XWiki Platform vulnerable to reflected cross-site scripting via xredirect parameter in DeleteApplication page
### Impact
Users are able to forge an URL with a payload allowing to inject Javascript in the page (XSS).
It's possible to exploit the DeleteApplication page to perform a XSS, e.g. by using URL such as:
> xwiki/bin/view/AppWithinMinutes/DeleteApplication?appName=Menu&resolve=true&xredirect=javascript:alert(document.domain)
This vulnerability exists since XWiki 6.2-milestone-1.
### Patches
The vulnerability has been patched in XWiki 14.10.5 and 15.1-rc-1.
### Workarounds
It's possible to workaround the vulnerability by editing the page AppWithinMinutes.DeleteApplication to perform checks on it, but note that the appropriate fix involves new APIs that have been recently introd
No detection rules found.
Nuclei
XWiki >= 6.2-milestone-1 - Cross-Site Scripting
nuclei·CVSS 6.1
CVE-2023-35161 [MEDIUM] XWiki >= 6.2-milestone-1 - Cross-Site Scripting
XWiki >= 6.2-milestone-1 - Cross-Site Scripting
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Users are able to forge an URL with a payload allowing to inject Javascript in the page (XSS). It's possible to exploit the DeleteApplication page to perform a XSS, e.g. by using URL such as: > xwiki/bin/view/AppWithinMinutes/DeleteApplication?appName=Menu&resolve=true&xredirect=javascript:alert(document.domain). This vulnerability exists since XWiki 6.2-milestone-1. The vulnerability has been patched in XWiki 14.10.5 and 15.1-rc-1.
Template:
id: CVE-2023-35161
info:
name: XWiki >= 6.2-milestone-1 - Cross-Site Scripting
author: ritikchaddha
severity: medium
description: |
XWiki Platform is a generic wiki platform offering runtime servi
https://github.com/xwiki/xwiki-platform/commit/8f5a889b7cd140770e54f5b4195d88058790e305https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-4xm7-5q79-3fchhttps://jira.xwiki.org/browse/XWIKI-20583https://jira.xwiki.org/browse/XWIKI-20614https://github.com/xwiki/xwiki-platform/commit/8f5a889b7cd140770e54f5b4195d88058790e305https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-4xm7-5q79-3fchhttps://jira.xwiki.org/browse/XWIKI-20583https://jira.xwiki.org/browse/XWIKI-20614
2023-06-23
Published