wso2 Summary
Latest vulnerabilities published by wso2
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Authorization Flaw in WSO2 Products Allows Unauthorized User Account Creation
CVE-2024-7097Wso2Wso2 Open Banking Am4.3MEDIUMPrivilege Escalation Vulnerability in WSO2 Products
CVE-2024-7096Wso2Wso2 Open Banking Iam4.2MEDIUMReflected Cross-Site Scripting Vulnerability in WSO2 Authentication Endpoint
CVE-2024-5962Wso2Wso2 Api Manager6.1MEDIUMImproper Authentication Vulnerability in WSO2 Identity Server
CVE-2024-7487Wso2Wso2 Identity Server5.8MEDIUMReflected XSS Vulnerability in WSO2 Identity Server
CVE-2024-7103Wso2Wso2 Identity Server4.6MEDIUMAuthorization Flaw in WSO2 Products Allowing User Account Takeover
CVE-2024-6914Wso2Wso2 Api Manager8.8HIGHXML External Entity Vulnerability in WSO2 API Manager
CVE-2025-2905Wso2Wso2 Api Manager9.1CRITICALReflected Cross-Site Scripting Vulnerability in WSO2 Products
CVE-2024-5848Wso2Wso2 Api Manager6.1MEDIUMCSRF Vulnerability in WSO2 Enterprise Integrator Management Console
CVE-2024-0392Wso2Wso2 Enterprise Integr...5.4MEDIUMAuthorization Flaw in WSO2 Products Allows Direct API Access
CVE-2024-2321Wso2Wso2 Api Manager5.6MEDIUMStored Cross-Site Scripting Vulnerability in WSO2 Management Console
CVE-2023-6911WSO2WSO2 API Manager4.8MEDIUMImproper Error Handling in WSO2 Products Exposing Internal Package Names
CVE-2023-6839Wso2Wso2 Api Manager5.3MEDIUMInput Validation Flaw in WSO2 Forum Feature Compromises API Integrity
CVE-2023-6835WSO2WSO2 API Manager4.3MEDIUMXML External Entity Vulnerability in WSO2 Products
CVE-2023-6836WSO2WSO2 API Manager 4.6MEDIUMUser Impersonation Vulnerability in WSO2 Products
CVE-2023-6837WSO2WSO2 API Manager8.2HIGHReflected XSS Vulnerability in WSO2 Products
CVE-2023-6838WSO2WSO2 API Manager6.1MEDIUMCross-Site Scripting Vulnerability in WSO2 API Manager
CVE-2023-31664Wso2Api ManagerπΎπ‘EPSS 14%6.1MEDIUMWSO2 carbon-registry Advanced Search advancedSearchForm-ajaxprocessor.jsp cross site scripting
CVE-2022-4520Wso2Carbon-registry3.5LOWWSO2 carbon-registry Request Parameter cross site scripting
CVE-2022-4521Wso2Carbon-registry3.5LOWReflected Cross-Site Scripting Vulnerability in WSO2 Enterprise Integrator by WSO2
CVE-2022-39810Wso2Enterprise Integrator6.1MEDIUMReflected Cross-Site Scripting Vulnerability in WSO2 Enterprise Integrator
CVE-2022-39809Wso2Enterprise Integrator6.1MEDIUMXML External Entity Vulnerability in WSO2 API Manager and Identity Server
CVE-2021-42646Wso2Api Manager9.1CRITICALReflected XSS Vulnerability in WSO2 Management Console Products
CVE-2022-29548Wso2Api ManagerπΎπ‘EPSS 67%4.6MEDIUMUnrestricted File Upload Vulnerability in WSO2 Products
CVE-2022-29464Wso2Identity Server Analyticsπ°πΎπ‘EPSS 94%π¦ 9.8CRITICALDOM-Based XSS Vulnerability in WSO2 Identity Server
CVE-2021-36760Wso2Identity Server6.1MEDIUM