Lucene search
ApacheCVELIST:CVE-2019-10090HistorySep 23, 2019 - 3:26 p.m.
CVE-2019-10090
2019-09-2315:26:14
apache
www.cve.org
1
On Apache JSPWiki, up to version 2.11.0.M4, a carefully crafted plugin link invocation could trigger an XSS vulnerability on Apache JSPWiki, related to the plain editor, which could allow the attacker to execute javascript in the victim’s browser and get some sensitive information about the victim.
CNA Affected
[
{
"product": "Apache JSPWiki",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Apache JSPWiki up to 2.11.0.M4"
}
]
}
]Related
cve
cve
CVE-2019-10090
2019-09-23 16:15:14
veracode
veracode
Cross-site Scripting (XSS)
2019-09-23 06:11:09
osv
osv
Cross-site scripting in Apache JSPWiki
2019-10-11 18:41:44
CVE-2019-10090
2019-09-23 16:15:14
github
github
Cross-site scripting in Apache JSPWiki
2019-10-11 18:41:44
githubexploit
githubexploit
Exploit for Cross-site Scripting in Apache Jspwiki
2020-12-01 09:18:57
nvd
nvd
CVE-2019-10090
2019-09-23 16:15:14
prion
prion
Information disclosure
2019-09-23 16:15:00
openvas
openvas
Apache JSPWiki < 2.11.0.M5 Multiple Vulnerabilities
2022-01-12 00:00:00