Moderate severity vulnerability that affects org.apache.jspwiki:jspwiki-builder and org.apache.jspwiki:jspwiki-war

2019-04-08T16:23:36
ID GHSA-PFFW-P2Q5-W6VH
Type github
Reporter GitHub Advisory Database
Modified 2019-07-03T21:02:07

Description

A specially crafted url could be used to access files under the ROOT directory of the application on Apache JSPWiki 2.9.0 to 2.11.0.M2, which could be used by an attacker to obtain registered users' details.