CVE-2023-47327
Description
CVE-2023-47327: In Silverpeas Core 6.3.1, the administrator-only 'Create a Space' feature lacks proper access control, allowing any authenticated user to create a space by navigating to a specific URL.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
CVE-2023-47327: In Silverpeas Core 6.3.1, the administrator-only 'Create a Space' feature lacks proper access control, allowing any authenticated user to create a space by navigating to a specific URL.
Vulnerability
Overview CVE-2023-47327 describes a broken access control vulnerability in the Silverpeas Core collaborative portal, specifically in the "Create a Space" feature. This function is intended to be reserved for administrators only, but due to insufficient server-side permission checks, any authenticated user can invoke it by directly navigating to the appropriate URL [2][4].
Exploitation
Details An attacker who has a valid user session (i.e., is authenticated) can exploit this flaw by sending an HTTP GET request to the vulnerable endpoint, such as /RjobStartPagePeas/jsp/CreateSpace, along with their valid X-STKN security token. No special privileges or prior knowledge beyond a standard login is required. The attacker simply needs to fill in a name and description for the new space, then confirm the creation [4].
Impact
Successful exploitation allows a low-privileged attacker to arbitrarily create collaborative spaces within the Silverpeas platform. This can lead to unauthorized resource consumption, organizational confusion, and potentially further privilege escalation if spaces inherit or grant unintended permissions [2][4]. The issue undermines the intended administrative control over workspace creation.
Mitigation
Silverpeas has addressed this vulnerability in version 6.3.2. Users running Silverpeas Core 6.3.1 or earlier are advised to upgrade to the fixed version as soon as possible. No workarounds have been publicly documented, so patching is the recommended course of action [4].
AI Insight generated on May 20, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.silverpeas.core:silverpeas-core-webMaven | < 6.3.2 | 6.3.2 |
Affected products
2- Silverpeas/Coredescription
Patches
0No patches discovered yet.
Vulnerability mechanics
Root cause
"Missing server-side authorization check on the "Create a Space" function allows any authenticated user to invoke it without administrator privileges."
Attack vector
An authenticated low-privileged user navigates directly to the URL `http://localhost:8080/silverpeas/RjobStartPagePeas/jsp/CreateSpace` with their valid X-STKN token [ref_id=1]. The server processes the request without verifying that the user holds the administrator role required for space creation [CWE-284]. The attacker supplies a name and description, clicks "Ok", and the space is created successfully [ref_id=1]. No special payload or additional privileges are needed beyond a valid session token.
Affected code
The vulnerable endpoint is `RjobStartPagePeas/jsp/CreateSpace` within Silverpeas Core [ref_id=1]. The advisory does not specify the exact server-side function or file path, but the handler for this JSP page fails to enforce an administrator role check before processing space creation requests.
What the fix does
The advisory states the fix was released in Silverpeas Core version 6.3.2 [ref_id=1]. No patch diff is provided in the bundle, but the remediation logically requires adding an authorization check on the server-side handler for the "Create a Space" endpoint to ensure only users with the administrator role can invoke it [CWE-284]. Users should upgrade to version 6.3.2 or later to close the access control gap.
Preconditions
- authAttacker must have a valid authenticated session with a valid X-STKN token.
- networkAttacker must be able to reach the Silverpeas web interface.
- inputAttacker must supply a name and description for the new space.
Reproduction
1. Log in to Silverpeas Core as a low-privileged (non-administrator) user and obtain your X-STKN token. 2. Navigate to `http://localhost:8080/silverpeas/RjobStartPagePeas/jsp/CreateSpace?X-STKN=[Users-STKN-Token]` [ref_id=1]. 3. Enter a name and description for the new space and click "Ok". 4. The space is created successfully despite the user lacking administrator privileges [ref_id=1].
Generated on May 27, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
4News mentions
0No linked articles in our index yet.