Apache JSPWiki is vulnerable to cross-site scripting. The vulnerability exists due to a lack of sanitization on the user preference page via the UserName
variable.
CPE | Name | Operator | Version |
---|---|---|---|
apache jspwiki main war | le | 2.11.1 | |
apache jspwiki main war | le | 2.11.1 |