pkg:maven/org.apache.jspwiki/jspwiki-main
Type
maven
Namespace
org.apache.jspwiki
Name
jspwiki-main
Known advisories, vulnerabilities and fixes for org.apache.jspwiki/jspwiki-main package.
Critical
1
High
2
Moderate
13
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | <= 2.11.2 |
CVE-2022-27166
|
 MAVEN:GHSA-2FXF-QJ94-3F83
|
Apache JSPWiki XSS due to crafted request on XHRHtml2Markup.jsp | moderate |
2022-08-05T00:00:31
(2 years ago) |
|
| Fixed | = 2.11.3 |
CVE-2022-27166
|
MAVEN:GHSA-2FXF-QJ94-3F83
|
Apache JSPWiki XSS due to crafted request on XHRHtml2Markup.jsp | moderate |
2022-08-05T00:00:31
(2 years ago) |
|
| Affected | < 2.12.2 |
CVE-2024-27136
|
MAVEN:GHSA-36GF-VPJ2-J42W
|
Cross site scripting in Apache JSPWiki | moderate |
2024-06-24T09:30:53
(2 months ago) |
|
| Fixed | = 2.12.2 |
CVE-2024-27136
|
MAVEN:GHSA-36GF-VPJ2-J42W
|
Cross site scripting in Apache JSPWiki | moderate |
2024-06-24T09:30:53
(2 months ago) |
|
| Affected | < 2.11.2 |
CVE-2022-24947
|
MAVEN:GHSA-4284-X26R-4HHC
|
Cross Site Request Forgery in Apache JSPWiki | high |
2022-02-26T00:00:44
(2 years ago) |
|
| Fixed | = 2.11.2 |
CVE-2022-24947
|
MAVEN:GHSA-4284-X26R-4HHC
|
Cross Site Request Forgery in Apache JSPWiki | high |
2022-02-26T00:00:44
(2 years ago) |
|
| Affected | < 2.11.0 |
CVE-2021-44140
|
MAVEN:GHSA-8GW6-W5RW-4G5C
|
Incorrect Default Permissions in Apache JSPWiki | critical |
2021-11-29T17:59:24
(2 years ago) |
|
| Fixed | = 2.11.0 |
CVE-2021-44140
|
MAVEN:GHSA-8GW6-W5RW-4G5C
|
Incorrect Default Permissions in Apache JSPWiki | critical |
2021-11-29T17:59:24
(2 years ago) |
|
| Affected | < 2.11.2 |
CVE-2022-24948
|
MAVEN:GHSA-9953-FMRW-V4VM
|
Cross-site Scripting in Apache JSPWiki | moderate |
2022-02-26T00:00:44
(2 years ago) |
|
| Fixed | = 2.11.2 |
CVE-2022-24948
|
MAVEN:GHSA-9953-FMRW-V4VM
|
Cross-site Scripting in Apache JSPWiki | moderate |
2022-02-26T00:00:44
(2 years ago) |
|
| Affected | < 2.11.3 |
CVE-2022-28731
|
MAVEN:GHSA-9X9J-VRHJ-V364
|
Apache JSPWiki CSRF due to crafted request on UserPreferences.jsp | moderate |
2022-08-05T00:00:30
(2 years ago) |
|
| Fixed | = 2.11.3 |
CVE-2022-28731
|
MAVEN:GHSA-9X9J-VRHJ-V364
|
Apache JSPWiki CSRF due to crafted request on UserPreferences.jsp | moderate |
2022-08-05T00:00:30
(2 years ago) |
|
| Affected | < 2.11.0 |
CVE-2021-40369
|
MAVEN:GHSA-CFQJ-9G2G-W7Q6
|
Apache JSPWiki Cross-site Scripting due to carefully crafted plugin link invocation | moderate |
2021-12-02T17:49:14
(2 years ago) |
|
| Fixed | = 2.11.0 |
CVE-2021-40369
|
MAVEN:GHSA-CFQJ-9G2G-W7Q6
|
Apache JSPWiki Cross-site Scripting due to carefully crafted plugin link invocation | moderate |
2021-12-02T17:49:14
(2 years ago) |
|
| Affected | >= 2.9.0, <= 2.11.0.M3 |
CVE-2019-10077
|
MAVEN:GHSA-CJ6J-32RG-45R2
|
Cross-site Scripting in JSPWiki | moderate |
2019-06-06T15:29:25
(5 years ago) |
|
| Fixed | = 2.11.0.M4 |
CVE-2019-10077
|
MAVEN:GHSA-CJ6J-32RG-45R2
|
Cross-site Scripting in JSPWiki | moderate |
2019-06-06T15:29:25
(5 years ago) |
|
| Affected | >= 2.9.0, <= 2.11.0.M3 |
CVE-2019-10076
|
MAVEN:GHSA-CXX2-FP39-RF3R
|
Cross-Site Scripting in JSPWiki | moderate |
2019-06-06T15:29:22
(5 years ago) |
|
| Fixed | = 2.11.0.M4 |
CVE-2019-10076
|
MAVEN:GHSA-CXX2-FP39-RF3R
|
Cross-Site Scripting in JSPWiki | moderate |
2019-06-06T15:29:22
(5 years ago) |
|
| Affected | >= 2.9.0, <= 2.11.0.M2 |
CVE-2019-0224
|
MAVEN:GHSA-FMPQ-W5Q6-9VF9
|
Moderate severity vulnerability that affects org.apache.jspwiki:jspwiki-main | moderate |
2019-04-02T15:46:48
(5 years ago) |
|
| Fixed | = 2.11.0.M3 |
CVE-2019-0224
|
MAVEN:GHSA-FMPQ-W5Q6-9VF9
|
Moderate severity vulnerability that affects org.apache.jspwiki:jspwiki-main | moderate |
2019-04-02T15:46:48
(5 years ago) |
|
| Affected | < 2.11.3 |
CVE-2022-28730
|
MAVEN:GHSA-GGJQ-8C4C-68R5
|
Apache JSPWiki XSS due to incomplete patch for CVE-2021-40369 | moderate |
2022-08-05T00:00:30
(2 years ago) |
|
| Fixed | = 2.11.3 |
CVE-2022-28730
|
MAVEN:GHSA-GGJQ-8C4C-68R5
|
Apache JSPWiki XSS due to incomplete patch for CVE-2021-40369 | moderate |
2022-08-05T00:00:30
(2 years ago) |
|
| Affected | >= 2.9.0, <= 2.11.0.M3 |
CVE-2019-10078
|
MAVEN:GHSA-HP5R-MHGP-56C9
|
Cross-site Scriptin in JSPWiki | moderate |
2019-06-06T15:29:29
(5 years ago) |
|
| Fixed | = 2.11.0.M4 |
CVE-2019-10078
|
MAVEN:GHSA-HP5R-MHGP-56C9
|
Cross-site Scriptin in JSPWiki | moderate |
2019-06-06T15:29:29
(5 years ago) |
|
| Affected | < 2.11.3 |
CVE-2022-28732
|
MAVEN:GHSA-HPH8-29XW-QFXX
|
Apache JSPWiki XSS due to crafted request in WeblogPlugin | moderate |
2022-08-05T00:00:30
(2 years ago) |
|
| Fixed | = 2.11.3 |
CVE-2022-28732
|
MAVEN:GHSA-HPH8-29XW-QFXX
|
Apache JSPWiki XSS due to crafted request in WeblogPlugin | moderate |
2022-08-05T00:00:30
(2 years ago) |
|
| Affected | < 2.11.3 |
CVE-2022-34158
|
MAVEN:GHSA-JP3M-P26H-MM7V
|
Apache JSPWiki CSRF due to crafted invocation on the Image plugin | high |
2022-08-05T00:00:31
(2 years ago) |
|
| Fixed | = 2.11.3 |
CVE-2022-34158
|
MAVEN:GHSA-JP3M-P26H-MM7V
|
Apache JSPWiki CSRF due to crafted invocation on the Image plugin | high |
2022-08-05T00:00:31
(2 years ago) |
|
| Affected | < 2.11.0.M5 |
CVE-2019-12407
|
MAVEN:GHSA-P2R4-RPJ8-M2P9
|
Cross-site Scripting in Apache JSPWiki | moderate |
2022-05-24T16:56:40
(2 years ago) |
|
| Fixed | = 2.11.0.M5 |
CVE-2019-12407
|
MAVEN:GHSA-P2R4-RPJ8-M2P9
|
Cross-site Scripting in Apache JSPWiki | moderate |
2022-05-24T16:56:40
(2 years ago) |
|
| Affected | < 2.12.0 |
CVE-2022-46907
|
MAVEN:GHSA-QVQ8-CW7F-M7M4
|
Apache JSPWiki vulnerable to cross-site scripting on several plugins | moderate |
2023-05-25T09:30:25
(16 months ago) |
|
| Fixed | = 2.12.0 |
CVE-2022-46907
|
MAVEN:GHSA-QVQ8-CW7F-M7M4
|
Apache JSPWiki vulnerable to cross-site scripting on several plugins | moderate |
2023-05-25T09:30:25
(16 months ago) |