The Apache JSPWiki team is pleased to announce the release of JSPWiki 2.12.0.
This is the first release on the 2.12 series of Apache JSPWiki, a
feature-rich and
extensible WikiWiki engine built around the standard JEE components.
The release is available here:
https://jspwiki-wiki.apache.org/Wiki
Severity: moderate
Description:
A carefully crafted request on several JSPWiki plugins could trigger
an XSS vulnerability on Apache JSPWiki, which could allow the attacker
to execute javascript in the victim's browser and get some sensitive
information about the victim.
Mitigation:
Apache JSPWiki
