JSPWiki is "a feature-rich and extensible WikiWiki engine built around a standart J2EE components (Java, servlets, JSP)". Multiple vulnerabilities have been discovered in JSPWiki, these allow access to sensitive files that would be otherwise inaccessible as well as the ability to inject arbitrary HTML and/or JavaScript.

http://www.securiteam.com/unixfocus/5JP0A0UNHI.html