webappexploit

Here is 1 public repository matching this topic...

Infinit3i / CVE-2025-24893

PoC exploits CVE-2025-24893 , a remote code execution (RCE) vulnerability in XWiki caused by improper sandboxing in Groovy macros rendered asynchronously. It allows arbitrary command execution through injection into RSS-based SolrSearch endpoints.

proof-of-concept poc rce xwiki commandinjection cve-2025-24893 groovyinjection asyncrendering webappexploit

Updated Sep 2, 2025
Python

Improve this page

Add a description, image, and links to the webappexploit topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the webappexploit topic, visit your repo's landing page and select "manage topics."

Learn more

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

webappexploit

Here is 1 public repository matching this topic...

Infinit3i / CVE-2025-24893

Improve this page

Add this topic to your repo