CVE-2023-34464— XWiki vulnerable to stored cross-site scripting via any wiki document and the displaycontent/rendercontent template

CVSS 9.1 · Critical EPSS 1.29% · P80 Updated Jan 25, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-34464

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

XWiki vulnerable to stored cross-site scripting via any wiki document and the displaycontent/rendercontent template

Source: NVD (National Vulnerability Database)

Vulnerability Description

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Starting in version 2.2.1 until versions 14.4.8, 14.10.5, and 15.1RC1 of org.xwiki.platform:xwiki-platform-web and any version prior to 14.4.8, 14.10.5, and 15.1.RC1 of org.xwiki.platform:xwiki-platform-web-templates, any user who can edit a document in a wiki like the user profile can create a stored cross-site scripting attack. The attack occurs by putting plain HTML code into that document and then tricking another user to visit that document with the `displaycontent` or `rendercontent` template and plain output syntax. If a user with programming rights is tricked into visiting such a URL, arbitrary actions be performed with this user's rights, impacting the confidentiality, integrity, and availability of the whole XWiki installation. This has been patched in XWiki 14.4.8, 14.10.5 and 15.1RC1 by setting the content type of the response to plain text when the output syntax is not an HTML syntax.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

在Web页面生成时对输入的转义处理不恰当(跨站脚本)

Source: NVD (National Vulnerability Database)

Vulnerability Title

XWiki Platform 跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

XWiki Platform是法国XWiki基金会的一套用于创建Web协作应用程序的Wiki平台。 xwiki-platform-web 2.2.1到14.4.8版本、xwiki-platform-web-templates 14.4.8之前版本、14.5到14.10.5版本、15.0-rc-1到15.1-rc-1版本存在跨站脚本漏洞，该漏洞源于任何可以在 wiki 中编辑文档的用户都可以创建存储的跨站脚本攻击。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
xwiki	xwiki-platform	org.xwiki.platform:xwiki-platform-web >= 2.2.1, < 14.4.8	-

II. Public POCs for CVE-2023-34464

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2023-34464

请登录查看更多情报信息。

https://jira.xwiki.org/browse/XWIKI-20290x_refsource_MISC
https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-fp7h-f9f5-x4q7x_refsource_CONFIRM
https://github.com/xwiki/xwiki-platform/commit/53e8292a31ec70fba5e1d705a4ac443658b9e6dfx_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2023-34464

Same Patch Batch · xwiki · 2023-06-23 · 16 CVEs total

CVE-2023-34465	10.0 CRITICAL	XWiki Platform's Mail.MailConfig can be edited by any user with edit rights
CVE-2023-35152	10.0 CRITICAL	XWiki Platform vulnerable to privilege escalation (PR) from account through like LiveTable
CVE-2023-35150	9.9 CRITICAL	XWiki Platform vulnerable to privilege escalation (PR) from view right via Invitation appl
CVE-2023-35156	9.7 CRITICAL	XWiki Platform vulnerable to reflected cross-site scripting via xredirect parameter in del
CVE-2023-35158	9.7 CRITICAL	XWiki Platform vulnerable to reflected cross-site scripting via xredirect parameter in res
CVE-2023-35159	9.7 CRITICAL	XWiki Platform vulnerable to reflected cross-site scripting via xredirect parameter in del
CVE-2023-35160	9.7 CRITICAL	XWiki Platform vulnerable to reflected cross-site scripting via back and xcontinue paramet
CVE-2023-35161	9.7 CRITICAL	XWiki Platform vulnerable to reflected cross-site scripting via xredirect parameter in Del
CVE-2023-35162	9.7 CRITICAL	XPlatform Wiki vulnerable to cross-site scripting via xcontinue parameter in preview actio
CVE-2023-35153	9.1 CRITICAL	XWiki Platform vulnerable to stored cross-site scripting in ClassEditSheet page via name p
CVE-2023-35155	8.8 HIGH	XWiki Platform vulnerable to cross-site scripting in target parameter via share page by em
CVE-2023-35157	8.5 HIGH	XWiki Platform vulnerable to reflected cross-site scripting via delattachment action
CVE-2023-34467	7.5 HIGH	XWiki Platform may retrieve email addresses of all users
CVE-2023-35151	7.5 HIGH	XWiki Platform may show email addresses in clear in REST results
CVE-2023-34466	4.3 MEDIUM	XWiki Platform's tags on non-viewable pages can be revealed to users

IV. Related Vulnerabilities

Same product: xwiki-platform

Same vendor: xwiki

Same weakness: CWE-79

V. Comments for CVE-2023-34464

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2023-34464— XWiki vulnerable to stored cross-site scripting via any wiki document and the displaycontent/rendercontent template

I. Basic Information for CVE-2023-34464

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2023-34464

III. Intelligence Information for CVE-2023-34464

Same Patch Batch · xwiki · 2023-06-23 · 16 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2023-34464

Leave a comment