[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: [oss-security] [CVE-2019-10076] Apache JSPWiki Cross-site scripting vulnerability
From: Juan_Pablo_Santos_RodrÃguez <juanpablo () apache ! org>
Date: 2019-05-19 16:04:47
Message-ID: CAMufup5AeePBWrRNStPgmXVFwcQ-TVR6g9tOKtaOODp+OS-BBw () mail ! gmail ! com
[Download RAW message or body]
[CVEID]:CVE-2019-10076
[PRODUCT]:Apache JSPWiki
[VERSION]:Apache JSPWiki 2.9.0 to 2.11.0.M3
[PROBLEMTYPE]:Cross-site scripting vulnerability
[REFERENCES]:https://jspwiki-wiki.apache.org/Wiki.jsp?page=CVE-2019-10076
[DESCRIPTION]: A carefully crafted malicious attachment could trigger an
XSS vulnerability on Apache JSPWiki, which could lead to session hijacking.
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic