org.apache.jspwiki:jspwiki-builder and org.apache.jspwiki, jspwiki-war are vulnerable to cross-site request forgery (CSRF). A remote attacker is able to trigger an CSRF attack on the Image plugin via sending a specifically crafted request, which allows a group privilege escalation of the attacker’s account. Further exploitation may allow the attacker to modify the email associated with the victim’s account and then send a reset password request from the login page.