HTTP: XWiki.org XWiki TextAreaClass displayView Code Injection
This signature detects attempts to exploit a known vulnerability against XWiki.org XWiki TextAreaClass displayView. A successful attack can lead to arbitrary code execution.
Extended Description
XWiki Platform is a generic wiki platform. Starting in version 2.3-milestone-1, the annotation displayer does not execute the content in a restricted context. This allows executing anything with the right of the author of any document by annotating the document. This has been patched in XWiki 13.10.11, 14.4.7 and 14.10. There is no easy workaround except to upgrade.
Affected Products
Xwiki xwiki
References
CVE: CVE-2024-31984
URL: https://github.com/advisories/GHSA-h6f5-8jj5-cxhr https://github.com/xwiki-contrib/application-changerequest/security/advisories/GHSA-f776-w9v2-7vfj https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-3989-4c6x-725f https://jira.xwiki.org/browse/XWIKI-20275 https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-62pr-qqf7-hh89 https://jira.xwiki.org/browse/XWIKI-21110 https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-7654-vfh6-rw6x https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-xm4h-3jxr-m3c6
Short Name
HTTP:CTS:XWIKI-CODE-INJ
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2023-26475 CVE-2023-29516 CVE-2023-29525 CVE-2023-45138 CVE-2023-46731 CVE-2023-50721 CVE-2024-31984 Code Injection TextAreaClass XWiki XWiki.org displayView
Release Date
03/21/2023
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3710
False Positive
Unknown
Vendors
Xwiki