Uploaded image for project: 'XWiki Platform'
  1. XWiki Platform
  2. XWIKI-22728

SQL injection through XWiki#searchDocuments API

    XMLWordPrintable

Details

    • Unit
    • Unknown
    • N/A

    Description

      I thought the fix in XWIKI-22718 would be enough, but XWiki#search* APIs are actually not going through the query API at all.

      This API is actually not impacted by the example given in XWIKI-22718 since XWIKI-4755 (which cause the \ to be escaped, making it impossible to use the same hack on MySQL/MariaDB).

      But it should be possible to use other hacks in other databases as described on XWIKI-22691.

      Attachments

        Issue Links

          is related to

          Bug - A problem which impairs or prevents the functions of the product. XWIKI-22718 SQL injection in short form select requests through the script query API

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed

          Activity

            People

              tmortagne Thomas Mortagne
              tmortagne Thomas Mortagne
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: