CVE-2019-10076

Source
https://nvd.nist.gov/vuln/detail/CVE-2019-10076
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-10076.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2019-10076
Aliases
Published
2019-05-20T21:29:00Z
Modified
2024-09-02T23:07:11Z
Severity
  • 6.1 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
Summary
[none]
Details

A carefully crafted malicious attachment could trigger an XSS vulnerability on Apache JSPWiki 2.9.0 to 2.11.0.M3, which could lead to session hijacking.

References

Affected packages

Git / github.com/apache/jspwiki