CVE-2022-27166
CVSS v3.1
6.1 (Medium)
EPSS
0.18 % (56th)
Affected Products
1
Advisories
1
A carefully crafted request on XHRHtml2Markup.jsp could trigger an XSS vulnerability on Apache JSPWiki up to and including 2.11.2, which could allow the attacker to execute javascript in the victim's browser and get some sensitive information about the victim.
Weaknesses
- CWE-79
- Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
- CVE Status
- PUBLISHED
- CNA
- Apache Software Foundation
- Published Date
-
2022-08-04 07:15:07
(2 years ago) - Updated Date
-
2022-08-10 15:51:14
(2 years ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...