CVE-2022-23654

Published: Feb 22, 2022

Modified: Apr 23, 2025

PUBLISHED

CVSS v3.1

8.1

HIGH

Description

Wiki.js is a wiki app built on Node.js. In affected versions an authenticated user with write access on a restricted set of paths can update a page outside the allowed paths by specifying a different target page ID while keeping the path intact. The access control incorrectly check the path access against the user-provided values instead of the actual path associated to the page ID. Commit https://github.com/Requarks/wiki/commit/411802ec2f654bb5ed1126c307575b81e2361c6b fixes this vulnerability by checking access control on the path associated with the page ID instead of the user-provided value. When the path is different than the current value, a second access control check is then performed on the user-provided path before the move operation.

Vendor	Product	Versions
Requarks	wiki	affected `< 2.5.276`

Weaknesses (CWE)

CWE-287

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

None

References

https://github.com/Requarks/wiki/security/advisories/GHSA-3cv9-795v-6j7j

x_refsource_CONFIRM

https://github.com/Requarks/wiki/commit/411802ec2f654bb5ed1126c307575b81e2361c6b

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-23654

Description

Affected Products

Weaknesses (CWE)

CVSS v3.1 Details

References