On Wed, Aug 3, 2022 at 10:45 PM Juan Pablo Santos Rodríguez <juanpa...@apache.org> wrote: > > Severity: moderate > > Description: > > A carefully crafted request on AJAXPreview.jsp could trigger an XSS > vulnerability on Apache JSPWiki, which could allow the attacker to execute > javascript in the victim's browser and get some sensitive information about > the victim. > > This vulnerability leverages CVE-2021-40369, where the Denounce plugin > dangerously renders user-supplied URLs. Upon re-testing CVE-2021-40369, it > appears that the patch was incomplete as it was still possible to insert > malicious input via the Denounce plugin. > > Mitigation: > > Apache JSPWiki users should upgrade to 2.11.3 or later. > > Credit: > > This issue was discovered by Poh Jia Hao, from Star Labs <info AT starlabs > DOT sg> > > References: > > https://jspwiki-wiki.apache.org/Wiki.jsp?page=CVE-2022-28732 >