PoC for CVE-2025-24893: XWiki' Remote Code Execution exploit for versions prior to 15.10.11, 16.4.1 and 16.5.0RC1.

CVE-2025-24893 is a critical unauthenticated remote code execution vulnerability in XWiki (versions < 15.10.11, 16.4.1, 16.5.0RC1) caused by improper handling of Groovy expressions in the SolrSearch macro.

XWiki with Let's Encrypt Using Docker Compose

PoC exploits CVE-2025-24893 , a remote code execution (RCE) vulnerability in XWiki caused by improper sandboxing in Groovy macros rendered asynchronously. It allows arbitrary command execution through injection into RSS-based SolrSearch endpoints.

Wiki Service is responsible for establishing communication with XWiki, handling XWiki related logic and forwarding it to other services.

POC exploit for CVE-2025-24893

mermaid render and editor for xwiki

An RCE vulnerability in XWiki was found allowing unauthenticated attackers to execute arbitrary Groovy code remotely without authentication or prior access.

An XWiki application that provides a page listing dead, non-URL links on your wiki.

setup XWiki on debian

Le site internet de l'Atelier des Médias

XWiki is a professional wiki

XWiki-Component, that's starts the main wiki and all subwikis after the start of the wiki

Este programa permite simplificar la creación de un árbol de directorios en XWiki usando el plugin de Tree Macro

Display weather information for a specific location

Apply a rights schema on a wiki or space.

Displays basic information and actions for the specified user.

Revert XWiki documents to a previous state.

Interactive Link Visualizer application for XWiki which will show end-users a sophisticated network-graph of pages present in a wiki.

XWiki Link Visualizer is an interactive extension that enables users to visually explore and analyze link relationships within XWiki pages through dynamic network graph