Lucene search
Veracode Vulnerability DatabaseVERACODE:36610HistoryAug 05, 2022 - 8:35 a.m.
Cross-Site Scripting (XSS)
2022-08-0508:35:07
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
cross-site scripting
apache jspwiki
vulnerability
improper validations
crafted request
sensitive information
EPSS
0.002
Percentile
56.1%
Apache JSPWiki is vulnerable to cross-site scripting. The vulnerability exists in jspInit function in XHRHtml2Markup.jsp due to improper validations, allowing an attacker to inject and execute malicious scripts via a crafted request and gain access to sensitive information.
Related
github
github
Apache JSPWiki XSS due to crafted request on XHRHtml2Markup.jsp
2022-08-05 00:00:31
nvd
nvd
CVE-2022-27166
2022-08-04 07:15:07
prion
prion
Design/Logic Flaw
2022-08-04 07:15:00
cnvd
cnvd
Apache JSPWiki Cross-Site Scripting Vulnerability (CNVD-2022-83599)
2022-08-08 00:00:00
cvelist
cvelist
CVE-2022-27166 XSS vulnerability on XHRHtml2Markup.jsp in JSPWiki 2.11.2
2022-08-04 06:15:17
ubuntucve
ubuntucve
CVE-2022-27166
2022-08-04 00:00:00
cve
cve
CVE-2022-27166
2022-08-04 07:15:07
osv
osv
CVE-2022-27166
2022-08-04 07:15:07
Apache JSPWiki XSS due to crafted request on XHRHtml2Markup.jsp
2022-08-05 00:00:31
openvas
openvas
Apache JSPWiki < 2.11.3 Multiple Vulnerabilities
2022-08-05 00:00:00