Lucene search
China National Vulnerability DatabaseCNVD-2022-17019HistoryMar 01, 2022 - 12:00 a.m.
Apache JSPWiki Cross-Site Scripting Vulnerability (CNVD-2022-17019)
2022-03-0100:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
0.002 Low
EPSS
Percentile
57.7%
JSPWiki is an open source JSP-based Wiki system from Apache, based on the file system, with permissions management and search capabilities.Apache JSPWiki versions prior to 2.11.2 have a cross-site scripting vulnerability in the user preferences screen. An attacker could use this vulnerability to execute javascript in the victim’s browser and obtain sensitive information.
| CPE | Name | Operator | Version |
|---|---|---|---|
| apache jspwiki | lt | 2.11.2 |
Related
prion
prion
Design/Logic Flaw
2022-02-25 09:15:00
veracode
veracode
Cross-site Scripting (XSS)
2022-02-28 08:09:26
cve
cve
CVE-2022-24948
2022-02-25 09:15:07
nvd
nvd
CVE-2022-24948
2022-02-25 09:15:07
osv
osv
Cross-site Scripting in Apache JSPWiki
2022-02-26 00:00:44
CVE-2022-24948
2022-02-25 09:15:07
cvelist
cvelist
github
github
Cross-site Scripting in Apache JSPWiki
2022-02-26 00:00:44
openvas
openvas
Apache JSPWiki < 2.11.2 Multiple Vulnerabilities
2022-02-25 00:00:00