CRITICAL🇵🇱 Wersja polska

CVE-2024-42489

CVSS 10.0v3.1pub. 2024-08-12upd. 2024-09-16

Pro Macros provides XWiki rendering macros. Missing escaping in the Viewpdf macro allows any user with view right on the `CKEditor.HTMLConverter` page or edit or comment right on any page to perform remote code execution. Other macros like Viewppt are vulnerable to the same kind of attack. This vulnerability is fixed in 1.10.1.

🤖 AI Analysis
How it works

The Viewpdf macro does not properly escape data passed to the XWiki rendering process. An attacker with permission to view the `CKEditor.HTMLConverter` page or permission to edit or comment on any page can inject a malicious payload that will be executed on the server side. The same mechanism applies to the Viewppt macro and potentially other similar macros in this package. The vulnerability is classified as injection (CWE-74), meaning that untrusted data reaches the interpreter directly without proper sanitization.

Impact

An attacker can gain full control of the XWiki server through remote code execution, which includes data theft, content modification, and the ability to perform lateral movement within the network.

Mitigation & patch

XWiki Pro Macros should be updated to version 1.10.1 or newer, where the bug has been fixed. Detailed information is available in the manufacturer's references and in commit 199553c84901999481a20614f093af2d57970eba in the GitHub repository.

Who is affected

XWiki Pro Macros in versions prior to 1.10.1

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
  • Xwiki Pro Macros

    APP
    Xwiki
    1.0 – 1.10.1 (bez)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2025-55727CRITICAL10.0PL ✓ten sam produkt

XWiki Pro Macros: RCE przez brak escapowania parametru width w makro column

CVE-2025-55728CRITICAL10.0PL ✓ten sam produkt

RCE przez XWiki syntax injection w parametrze classes makra Panel

CVE-2025-65036HIGH8.3ten sam produkt

XWiki Remote Macros provides XWiki rendering macros that are useful when migrating content from Confluence. Pr...

CVE-2025-65089MEDIUM6.8ten sam produkt

XWiki Remote Macros provides XWiki rendering macros that are useful when migrating content from Confluence. Pr...

CVE-2025-24893CRITICAL9.8⚠ KEVPL ✓ten sam vendor

XWiki Platform — niezautoryzowany RCE przez endpoint SolrSearch