{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-02T23:43:02.976","vulnerabilities":[{"cve":{"id":"CVE-2022-28732","sourceIdentifier":"security@apache.org","published":"2022-08-04T07:15:07.597","lastModified":"2024-11-21T06:57:49.567","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A carefully crafted request on WeblogPlugin could trigger an XSS vulnerability on Apache JSPWiki, which could allow the attacker to execute javascript in the victim's browser and get some sensitive information about the victim. Apache JSPWiki users should upgrade to 2.11.3 or later."},{"lang":"es","value":"Una petición cuidadosamente diseñada en WeblogPlugin podría desencadenar una vulnerabilidad de tipo XSS en Apache JSPWiki, que podría permitir al atacante ejecutar javascript en el navegador de la víctima y conseguir información confidencial sobre la misma. Los usuarios de Apache JSPWiki deberían actualizar a la versión 2.11.3 o posterior"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:apache:jspwiki:*:*:*:*:*:*:*:*","versionEndExcluding":"2.11.3","matchCriteriaId":"64A3E769-A3E7-4648-8792-5138BD591C1F"}]}]}],"references":[{"url":"https://jspwiki-wiki.apache.org/Wiki.jsp?page=CVE-2022-28732","source":"security@apache.org","tags":["Vendor Advisory"]},{"url":"https://jspwiki-wiki.apache.org/Wiki.jsp?page=CVE-2022-28732","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}