Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:27 a.m.8 views

CVE-2019-12407

On Apache JSPWiki, up to version 2.11.0.M4, a carefully crafted plugin link invocation could trigger an XSS vulnerability on Apache JSPWiki, related to the remember parameter on some of the JSPs, which could allow the attacker to execute javascript in the victim's browser and get some sensitive...

6.1CVSS5.9AI score0.02913EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2022/05/24 4:56 p.m.31 views

Cross-site Scripting in Apache JSPWiki

In Apache JSPWiki, up to version 2.11.0.M4, a carefully crafted plugin link invocation could trigger an XSS vulnerability on Apache JSPWiki, related to the remember parameter on some of the JSPs, which could allow the attacker to execute javascript in the victim's browser and get some sensitive...

6.1CVSS4.2AI score0.02913EPSS
Exploits0References3Affected Software2
Github Security Blog
Github Security Blog
added 2019/10/11 6:41 p.m.38 views

Cross-site scripting in Apache JSPWiki

On Apache JSPWiki, up to version 2.11.0.M4, a carefully crafted plugin link invocation could trigger an XSS vulnerability on Apache JSPWiki, related to the plain editor, which could allow the attacker to execute javascript in the victim's browser and get some sensitive information about the victi...

6.1CVSS4.1AI score0.02885EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2019/10/11 6:41 p.m.25 views

GHSA-G6WW-2X43-H963 Cross-site scripting in Apache JSPWiki

On Apache JSPWiki, up to version 2.11.0.M4, a carefully crafted plugin link invocation could trigger an XSS vulnerability on Apache JSPWiki, related to the plain editor, which could allow the attacker to execute javascript in the victim's browser and get some sensitive information about the victi...

6.1CVSS6AI score0.02885EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2019/09/23 4:15 p.m.59 views

CVE-2019-12407

On Apache JSPWiki, up to version 2.11.0.M4, a carefully crafted plugin link invocation could trigger an XSS vulnerability on Apache JSPWiki, related to the remember parameter on some of the JSPs, which could allow the attacker to execute javascript in the victim's browser and get some sensitive...

6.1CVSS6.4AI score0.02913EPSS
Exploits0References1
Rows per page
Query Builder