writeups.xyz / CVE-2023-35150: Arbitrary Code Injection In XWiki.Org XWiki

Submitter : c2a

Date: 23 August 2023

Bounty : undisclosed

Vulnerabilities :

• Code Injection
• Security Code Review

Programs :

• XWiki

Authors :

• Simon Humbert
• Lucas Miller

Link :
https://www.zerodayinitiative.com/blog/2023/8/22/cve-2023-35150-arbitrary-code-injection-in-xwikiorg-xwiki