CVE-2022-27166

A carefully crafted request on XHRHtml2Markup.jsp could trigger an XSS vulnerability on Apache JSPWiki up to and including 2.11.2, which could allow the attacker to execute javascript in the victim's browser and get some sensitive information about the victim...

CVE-2019-12407

On Apache JSPWiki, up to version 2.11.0.M4, a carefully crafted plugin link invocation could trigger an XSS vulnerability on Apache JSPWiki, related to the remember parameter on some of the JSPs, which could allow the attacker to execute javascript in the victim's browser and get some sensitive...

EUVD-2019-0425

Malware in sbrugna...

EUVD-2019-0683

Malware in sbrugna...

EUVD-2019-0416

Malware in sbrugna...

EUVD-2019-0526

Malware in sbrugna...

EUVD-2019-0541

Malware in sbrugna...

EUVD-2019-0528

Malware in sbrugna...

EUVD-2019-0702

Malware in sbrugna...

EUVD-2019-0691

Malware in sbrugna...

EUVD-2019-0231

Malware in sbrugna...

EUVD-2019-0700

Malware in sbrugna...

EUVD-2025-23254

Malicious code in bioql PyPI...

EUVD-2022-4660

Malicious code in bioql PyPI...

EUVD-2023-1614

Malicious code in bioql PyPI...

EUVD-2022-6578

Malicious code in bioql PyPI...

EUVD-2022-0932

Malicious code in bioql PyPI...

EUVD-2022-0800

Malicious code in bioql PyPI...

Cross-site Scripting (XSS)

Apache JSPWiki is vulnerable to Cross-site Scripting XSS. The vulnerability is due to insufficient sanitization of wiki markup and markdown header link creation because specially crafted input can execute JavaScript in the victim’s browser, enabling theft of sensitive information...

Apache JSPWiki Image plugin cross-site scripting vulnerability

Apache JSPWiki is the United States Apache Apache Foundation of a Java, Servlet and JSP-based open source WikiWiki engine to build . A cross-site scripting vulnerability exists in the Apache JSPWiki Image plugin, which can be exploited by an attacker to execute javascript in the victim's browser...