CVE-2018-20242

Summary

A carefully crafted URL could trigger an XSS vulnerability on Apache JSPWiki, from versions up to 2.10.5, which could lead to session hijacking.

Affected Software

VendorProductVersion RangeStatus
Apache Software FoundationApache JSPWikiprior to 2.10.5affected

Weaknesses

  • n/a

ADP Enrichment

CVE Program Container

Additional References

References