A vulnerability classified as critical has been found in XWiki Platform. This affects an unknown part of the component Administration Interface. The manipulation leads to improper neutralization of directives in dynamically evaluated code (‘eval injection’).
This vulnerability is uniquely identified as CVE-2023-50723. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.