Both Xbow

**Name of the Vulnerable Software and Affected Versions** Apache JSPWiki versions prior to 2.12.3 **Description** A carefully crafted request using the Image plugin could trigger a cross-site scripting (XSS) issue on Apache JSPWiki. This could allow an attacker to execute JavaScript in the victim's browser and potentially obtain sensitive information. **Recommendations** Upgrade to version 2.12.3 or later.