JSPWiki 2.4.103 and 2.5.139-beta allows remote attackers to obtain sensitive information (full path) via an invalid integer in the version parameter to the default URI under attach/Main/.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.013
EPSS Ranking 66.9%