File tree Expand file tree Collapse file tree 1 file changed +1
-1
lines changed
modules/exploits/multi/http Expand file tree Collapse file tree 1 file changed +1
-1
lines changed Original file line number Diff line number Diff line change @@ -19,7 +19,7 @@ def initialize(info = {})
1919 XWiki includes a macro called SolrSearch (defined in Main.SolrSearchMacros) that enables full-text search through the embedded Solr engine.
2020 The vulnerability stems from the way this macro evaluates search parameters in Groovy, failing to sanitize or restrict malicious input.
2121
22- This vulnerability affects XWiki Platform versions >= 5.3‑ milestone‑ 2 and < 15.10.11, and versions >= 16.0.0‑rc‑ 1 and < 16.4.1.
22+ This vulnerability affects XWiki Platform versions >= 5.3- milestone- 2 and < 15.10.11, and versions >= 16.0.0-rc- 1 and < 16.4.1.
2323 Successful exploitation may result in remote code execution under the privileges
2424 of the web server, potentially exposing sensitive data or disrupting survey operations.
2525
You can’t perform that action at this time.
0 commit comments