A carefully crafted URL could trigger an XSS vulnerability on Apache JSPWiki, from versions up to 2.10.5, which could lead to session hijacking.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| org.apache.jspwiki:jspwiki-war(Maven) | 0 | 2.11.0.M1 | N/A |
CVSS Metrics
