GHSA-2fr7-cc7p-p45q · 深刻度: high · エコシステム: maven — Data leak of password hash through change requests
XWiki Change Request is an XWiki application allowing to request changes on a wiki without publishing directly the changes. Change request allows to edit any page by default, and the changes are then exported in an XML file that anyone can download. So it's possible for an attacker to obtain password hash of users by performing an edit on the user profiles and then downloading the XML file that has been created. This is also true for any document that might contain password field and that a user can view. This vulnerability impacts all version of Change Request, but the impact depends on the rights that has been set on the wiki since it requires for the user to have the Change request right (allowed by default) and view rights on the page to target. This issue cannot be easily exploited in an automated way. The patch consists in denying to users the right of editing pages that contains a password field with change request. It means that already existing change request for those pages won't be removed by the patch, administrators needs to take care of it. The patch is provided in Change Request 1.10, administrators should upgrade immediately. It's possible to workaround the vulnerability by denying manually the Change request right on some spaces, such as XWiki space which will include any user profile by default.
総合評価: CVE-2023-49280 は悪用リスクが高い(65.2/100)。CVSS 深刻度は高。悪用される可能性が高い(EPSS 0.94%、56 パーセンタイル) 根拠: 公開エクスプロイトが 1 件参照されています(Exploit-DB)。 推奨対応: 公開エクスプロイトが確認されています。影響範囲の確認、緩和策の適用、パッチ適用を優先してください。
リスクは変動します。再評価に基づき、本ページの表示内容を更新しています。
| EDB-ID | ソース | 種別 | 公開 | リンク |
|---|---|---|---|---|
| — | nvd_ref | exploit_tag | Exploit-DB ↗ |
EPSS は日次で悪用されやすさの相対度合いを推定します。パーセンタイルは採点済み CVE の中での相対位置(高いほど相対的に深刻)を示します。
| # | 日付 | 旧 EPSS スコア | 新 EPSS スコア | Δ(新 − 旧) |
|---|---|---|---|---|
| 1 | 2026-06-15 | 1.20% | 0.94% | -0.26% |
| 2 | 2026-06-07 | 0.92% | 1.20% | +0.28% |
| 3 | 2026-01-30 | — | 0.92% | — |
EPSS の全履歴 (全 13 件)
この CVE の CVSS 指標。
| ベーススコア | バージョン | 深刻度 | ベクトル | 悪用しやすさ | 影響 | スコアの出典 |
|---|---|---|---|---|---|---|
| 7.7 | 3.1 | HIGH |
|
3.1 | 4.0 | [email protected] |
| 6.5 | 3.1 | MEDIUM |
|
2.8 | 3.6 | [email protected] |
GHSA-2fr7-cc7p-p45q · 深刻度: high · エコシステム: maven — Data leak of password hash through change requests
| ベンダー | 製品 | バージョン | 生の CPE |
|---|---|---|---|
| xwiki | change_request | >= 0.1, < 1.10 | cpe:2.3:a:xwiki:change_request:*:*:*:*:*:*:*:* |
| URL | タグ |
|---|---|
| https://github.com/xwiki-contrib/application-changerequest/commit/ff0f5368ea04f0e4aa7b33821c707dc68a8c5ca8 | Patch |
| https://github.com/xwiki-contrib/application-changerequest/security/advisories/GHSA-2fr7-cc7p-p45q | Third Party Advisory |
| https://jira.xwiki.org/browse/CRAPP-302 | Exploit Issue Tracking Vendor Advisory |