Apache JSPWiki is vulnerable to cross-site scripting. The vulnerability exists in jspInit
function in XHRHtml2Markup.jsp
due to improper validations, allowing an attacker to inject and execute malicious scripts via a crafted request and gain access to sensitive information.