Cross-site scripting (XSS) vulnerability in Search.jsp in JSPWiki 2.1.120-cvs and earlier allows remote attackers to execute arbitrary web script as other users via the query parameter.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| jspwiki | jspwiki | 2.1.121 |
| jspwiki | jspwiki | 2.1.120 |
| jspwiki | jspwiki | 2.1.122 |