关联漏洞
描述
PoC exploit for XWiki Remote Code Execution Vulnerability (CVE-2025-24893)
介绍
# CVE-2025-24893 - XWiki Unauthenticated Remote Code Execution
PoC exploit for [XWiki](https://www.xwiki.org/xwiki/bin/view/Main/WebHome) Unauthenticated Remote Code Execution Vulnerability (CVE-2025-24893). This PoC allows to execute arbitrary commands through Groovy code on SolrSearch Macro.
## Details
```text
Severity: Critical
CVSS Score: 9.8 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
EPSS Score: 92.01% (Very high likelihood of exploitation)
Affected Versions: All versions prior to 15.10.11, 16.4.1, and 16.5.0RC1
Patched Versions: 15.10.11, 16.4.1, 16.5.0RC1
```
## Usage
```bash
usage: CVE-2025-24893 [-h] [-t TARGET] [-c COMMAND] [-v]
Unauthenticated Remote Code Execution (RCE) on XWiki
options:
-h, --help show this help message and exit
-t, --target TARGET Target XWiki URL
-c, --command COMMAND Command to execute
-v, --verify Verify if target XWiki is vulnerable
```
## Example
***Verification***
***Basic command exploitation***
***Remote shell exploitation***
## References
[https://www.offsec.com/blog/cve-2025-24893/]
[https://nvd.nist.gov/vuln/detail/CVE-2025-24893]
[https://www.incibe.es/en/incibe-cert/early-warning/vulnerabilities/cve-2025-24893]
文件快照
[4.0K] /data/pocs/f7800257dda9eb3f82e8c1d729664374ed75f9be
├── [3.4K] CVE-2025-24893.py
├── [ 18K] image-1.png
├── [ 18K] image-2.png
├── [ 19K] image.png
└── [1.3K] README.md
0 directories, 5 files
备注
1. 建议优先通过来源进行访问。
2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。