jspwiki-main is vulnerable to cross-site scripting (XSS). The vulnerability exists as the value of title
and rootname
are not sanitized in org/apache/wiki/plugin/ReferredPagesPlugin.java
.
CPE | Name | Operator | Version |
---|---|---|---|
apache jspwiki main jar | le | 2.11.0.M3 |