.. / CVE-2023-32068

Exploit for XWiki - Open Redirect (CVE-2023-32068)

Description:

XWiki Platform is vulnerable to open redirect attacks due to improper validation of the xredirect parameter. This allows an attacker to redirect users to an arbitrary website. The vulnerability is patched in versions 14.10.4 and 15.0.

Nuclei Template

View the template here CVE-2023-32068.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2023/CVE-2023-32068.yaml
Copy

References:

https://nvd.nist.gov/vuln/detail/CVE-2023-32068
https://jira.xwiki.org/browse/XWIKI-20096