Lucene search
ApacheCVELIST:CVE-2022-24947HistoryFeb 25, 2022 - 8:30 a.m.
CVE-2022-24947 Apache JSPWiki CSRF Account Takeover
2022-02-2508:30:18
apache
www.cve.org
Apache JSPWiki user preferences form is vulnerable to CSRF attacks, which can lead to account takeover. Apache JSPWiki users should upgrade to 2.11.2 or later.
CNA Affected
[
{
"product": "Apache JSPWiki",
"vendor": "Apache Software Foundation",
"versions": [
{
"status": "affected",
"version": "Apache JSPWiki up to 2.11.1 "
}
]
}
]Related
github
github
Cross Site Request Forgery in Apache JSPWiki
2022-02-26 00:00:44
cnvd
cnvd
Apache JSPWiki Cross-Site Request Forgery Vulnerability
2022-03-01 00:00:00
prion
prion
Cross site request forgery (csrf)
2022-02-25 09:15:00
cve
cve
CVE-2022-24947
2022-02-25 09:15:07
veracode
veracode
Cross-site Request Forgery (CSRF)
2022-02-28 06:59:34
nvd
nvd
CVE-2022-24947
2022-02-25 09:15:07
ubuntucve
ubuntucve
CVE-2022-24947
2022-02-25 00:00:00
osv
osv
CVE-2022-24947
2022-02-25 09:15:07
Cross Site Request Forgery in Apache JSPWiki
2022-02-26 00:00:44
openvas
openvas
Apache JSPWiki < 2.11.2 Multiple Vulnerabilities
2022-02-25 00:00:00