Apache Jspwiki
Approved changes feed: RSS · Atom
cpe:2.3:a:n/a:apache_jspwiki:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | N/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78) |
|---|---|
| Product | Apache Jspwiki (30a76ceb-ffa2-5e23-803c-09b8086421e1) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2019-12407 |
vulnerable | 2026-06-08 05:12:39.070170 |
Details available
On Apache JSPWiki, up to version 2.11.0.M4, a carefully crafted plugin link invocation could trigger an XSS vulnerability on Apache JSPWiki, related to the remember parameter on some of the JSPs, which could allow the attacker to execute javascript in the victim's browser and get some sensitive information about the victim.
Published: 2019-09-23T15:40:59.000Z
Updated: 2024-08-04T23:17:40.131Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-12404 |
vulnerable | 2026-06-08 05:12:39.056114 |
Details available
On Apache JSPWiki, up to version 2.11.0.M4, a carefully crafted plugin link invocation could trigger an XSS vulnerability on Apache JSPWiki, related to InfoContent.jsp, which could allow the attacker to execute javascript in the victim's browser and get some sensitive information about the victim.
Published: 2019-09-23T14:54:35.000Z
Updated: 2024-08-04T23:17:40.002Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-10090 |
vulnerable | 2026-06-08 05:12:22.216669 |
Details available
On Apache JSPWiki, up to version 2.11.0.M4, a carefully crafted plugin link invocation could trigger an XSS vulnerability on Apache JSPWiki, related to the plain editor, which could allow the attacker to execute javascript in the victim's browser and get some sensitive information about the victim.
Published: 2019-09-23T15:26:14.000Z
Updated: 2024-08-04T22:10:09.441Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-10089 |
vulnerable | 2026-06-08 05:12:22.215857 |
Details available
On Apache JSPWiki, up to version 2.11.0.M4, a carefully crafted plugin link invocation could trigger an XSS vulnerability on Apache JSPWiki, related to the WYSIWYG editor, which could allow the attacker to execute javascript in the victim's browser and get some sensitive information about the victim.
Published: 2019-09-23T14:51:02.000Z
Updated: 2024-08-04T22:10:09.549Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-10087 |
vulnerable | 2026-06-08 05:12:22.202670 |
Details available
On Apache JSPWiki, up to version 2.11.0.M4, a carefully crafted plugin link invocation could trigger an XSS vulnerability on Apache JSPWiki, related to the Page Revision History, which could allow the attacker to execute javascript in the victim's browser and get some sensitive information about the victim.
Published: 2019-09-23T14:47:13.000Z
Updated: 2024-08-04T22:10:09.414Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.