Remote Code Execution in Apache Wicket-jQuery-UI WYSIWYG Editor

Remote Code Execution in Apache Wicket-jQuery-UI WYSIWYG Editor

CVE-2018-1325 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

In Apache wicket-jquery-ui <= 6.29.0, <= 7.10.1, <= 8.0.0-M9.1, JS code created in WYSIWYG editor will be executed on display.

Learn more about our Cis Benchmark Audit For Apache Http Server.