This is a summary of the AI-generated 10-question deep analysis. The full version (longer answers, follow-up Q&A, related CVEs) requires login. Read the full analysis β
Q1What is this vulnerability? (Essence + Consequences)
π¨ **Essence**: CVE-2025-55729 is a critical RCE flaw in `xwiki-pro-macros`. It stems from **missing input escaping** for the `ac:type` parameter.β¦
π‘οΈ **Root Cause**: **CWE-116** (Improper Encoding/Escaping of Info). The system fails to sanitize the `ac:type` argument. This allows malicious payloads to slip through as executable code instead of plain text.β¦
π¦ **Affected**: **xwiki-pro-macros** by **xwikisas**. π **Version**: All versions **prior to 1.26.5**. β **Fixed**: Version 1.26.5 and later are safe. π’ **Vendor**: XWiki SAS.
Q4What can hackers do? (Privileges/Data)
π» **Hackers' Power**: Full **Remote Code Execution**. They can run arbitrary commands on the server. π **Privileges**: System-level access.β¦
π **Threshold**: **LOW**. π **Network**: Attack Vector is Network (AV:N). π« **Auth**: No Privileges Required (PR:N). ποΈ **UI**: No User Interaction needed (UI:N). You can exploit this remotely without logging in.
Q6Is there a public Exp? (PoC/Wild Exploitation)
π΅οΈ **Public Exploit**: **No**. The `pocs` field is empty. π **References**: Links to Jira, GitHub commits, and GHSA advisories exist, but no public PoC code is provided in this data.β¦
π **Self-Check**: Scan for `xwiki-pro-macros` components. π **Version Audit**: Check if your version is **< 1.26.5**. π§ͺ **Test**: Look for unsanitized `ac:type` parameters in macro inputs.β¦
π§ **Official Fix**: **YES**. Update to **version 1.26.5** or higher. π₯ **Patch**: Available via GitHub commit `06e6cf3...` and GHSA advisory `GHSA-22xj-jpjg-gpgw`.β¦
π₯ **Urgency**: **CRITICAL**. β±οΈ **Priority**: **P0**. With CVSS 10.0 and no auth required, this is a high-priority target for attackers. π **Action**: Patch immediately upon availability. Do not delay.