CVE-2019-10076

Опубликовано: 20 мая 2019

Источник: debian

EPSS Низкий

Описание

A carefully crafted malicious attachment could trigger an XSS vulnerability on Apache JSPWiki 2.9.0 to 2.11.0.M3, which could lead to session hijacking.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
jspwiki	removed			package

EPSS

Процентиль: 87%

0.03224

Низкий

Связанные уязвимости

CVE-2019-10076

CVSS3: 6.1

ubuntu

больше 6 лет назад

A carefully crafted malicious attachment could trigger an XSS vulnerability on Apache JSPWiki 2.9.0 to 2.11.0.M3, which could lead to session hijacking.

CVE-2019-10076

CVSS3: 6.1

nvd

больше 6 лет назад

A carefully crafted malicious attachment could trigger an XSS vulnerability on Apache JSPWiki 2.9.0 to 2.11.0.M3, which could lead to session hijacking.

GHSA-cxx2-fp39-rf3r

CVSS3: 6.1

github

больше 6 лет назад

Cross-Site Scripting in JSPWiki

EPSS

Процентиль: 87%

0.03224

Низкий