JSPWiki is an open source JSP-based Wiki system from Apache, based on the file system, with rights management and search capabilities.Apache JSPWiki versions prior to 2.11.2 have a cross-site request forgery vulnerability in the user preference form. An attacker could use this vulnerability to redirect users to a site controlled by the attacker, etc. to cause an account takeover.
CPE | Name | Operator | Version |
---|---|---|---|
apache jspwiki | lt | 2.11.2 |