Remote code execution in XWiki platform

CERT-LatestNews ThreatsCybercrime
Exploit availability: No Description. CWE-94 - Improper Control of Generation of Code ('Code Injection') The vulnerability allows a remote attacker to execute arbitrary code on the target system. The vulnerability exists due to improper input validation.