Lucene search
China National Vulnerability DatabaseCNVD-2022-83598HistoryAug 08, 2022 - 12:00 a.m.
Apache JSPWiki Cross-Site Scripting Vulnerability (CNVD-2022-83598)
2022-08-0800:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
apache jspwiki
cross-site scripting
vulnerability
weblogplugin
xss
javascript
sensitive information
EPSS
0.002
Percentile
56.1%
Apache JSPWiki is an open source WikiWiki engine built on Java, Servlet and JSP from the Apache Foundation. security vulnerability exists in versions prior to Apache JSPWiki 2.11.3, which stems from a carefully crafted request on the WeblogPlugin that could trigger an XSS vulnerability, which could be exploited by an attacker to victim’s browser to execute javascript and obtain some sensitive information about the victim.
Related
nvd
nvd
CVE-2022-28732
2022-08-04 07:15:07
prion
prion
Cross site scripting
2022-08-04 07:15:00
cve
cve
CVE-2022-28732
2022-08-04 07:15:07
osv
osv
Apache JSPWiki XSS due to crafted request in WeblogPlugin
2022-08-05 00:00:30
CVE-2022-28732
2022-08-04 07:15:07
Apache JSPWiki CSRF due to crafted request on UserPreferences.jsp
2022-08-05 00:00:30
veracode
veracode
Cross-site Scripting (XSS)
2022-08-05 03:23:51
cvelist
cvelist
ubuntucve
ubuntucve
CVE-2022-28732
2022-08-04 00:00:00
github
github
Apache JSPWiki XSS due to crafted request in WeblogPlugin
2022-08-05 00:00:30
openvas
openvas
Apache JSPWiki < 2.11.3 Multiple Vulnerabilities
2022-08-05 00:00:00