Cross-site scripting (XSS) vulnerability in Edit.jsp in JSPWiki 2.4.104 and 2.5.139 allows remote malicious users to inject arbitrary web script or HTML via the editor parameter, a different vector than CVE-2007-5120.b.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jspwiki jspwiki 2.5.139_beta |
||
jspwiki jspwiki 2.4.104 |
||
jspwiki jspwiki 2.5.139 |