Security Advisory

CVE-2018-20242

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-02-11 21:00:00

Last updated 2024-09-17 01:47:05

Assigner apache

State PUBLISHED

A carefully crafted URL could trigger an XSS vulnerability on Apache JSPWiki, from versions up to 2.10.5, which could lead to session hijacking.