An issue was discovered in WSO2 Enterprise Integrator 6.4.0. A Reflected Cross-Site Scripting (XSS) vulnerability has been identified in the Management Console under /carbon/mediation_secure_vault/properties/ajaxprocessor.jsp via the name parameter. Session hijacking or similar attacks would not be possible.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.gruppotim.it/it/footer/red-team.html |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-09-09T16:39:16
Updated: 2024-08-03T12:07:42.683Z
Reserved: 2022-09-05T00:00:00
Link: CVE-2022-39809
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-09-09T17:15:08.550
Modified: 2022-09-14T16:42:27.943
Link: CVE-2022-39809
Redhat
No data.