CVE-2024-55879
CRITICALXWiki 2.3-15.10.8 and 16.0.0-16.2.0 - Authenticated Remote Code Execution via ConfigurableClass Instance Addition
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2024-55879. PoCs published by dbwlsdnr95.
AI-analyzed exploit summary This repository contains a functional simulation of CVE-2024-55879, an RCE vulnerability in XWiki Platform, using Spring Boot and Groovy to demonstrate unsafe script execution. It includes a Dockerized environment, exploit simulation via curl, and detailed testing documentation.
Description
XWiki Platform is a generic wiki platform. Starting in version 2.3 and prior to versions 15.10.9, 16.3.0, any user with script rights can perform arbitrary remote code execution by adding instances of `XWiki.ConfigurableClass` to any page. This compromises the confidentiality, integrity and availability of the whole XWiki installation. This has been patched in XWiki 15.10.9 and 16.3.0. No known workarounds are available except upgrading.
Exploits (1)
This repository contains a functional simulation of CVE-2024-55879, an RCE vulnerability in XWiki Platform, using Spring Boot and Groovy to demonstrate unsafe script execution. It includes a Dockerized environment, exploit simulation via curl, and detailed testing documentation.
References (4)
Scores
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H