wso2 Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by wso2
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Missing Authentication Enforcement in WSO2 Products
CVE-2025-9312Wso2Wso2 Api Manager9.8CRITICALCross-Site Request Forgery in WSO2 Products
CVE-2025-6670Wso2Wso2 Open Banking Am8.8HIGHArbitrary Code Execution Vulnerability in WSO2 Products
CVE-2025-11093Wso2Wso2 Micro Integrator8.4HIGHFile Upload Flaw in WSO2 Products Exposes Systems to Exploitation
CVE-2025-10907Wso2Wso2 Api Manager8.4HIGHImproper Privilege Management in WSO2 API Manager
CVE-2025-9152Wso2Wso2 Api Manager9.8CRITICALImproper Access Control in WSO2 Products
CVE-2025-9804Wso2Wso2 Identity Server A...8.9HIGHAccess Control Bypass in WSO2 Products
CVE-2025-10611Wso2Wso2 Api Manager9.8CRITICALAuthorization Flaw in WSO2 Products Allowing User Account Takeover
CVE-2024-6914Wso2Wso2 Api Manager8.8HIGHXML External Entity Vulnerability in WSO2 API Manager
CVE-2025-2905Wso2Wso2 Api Manager9.1CRITICALUser Impersonation Vulnerability in WSO2 Products
CVE-2023-6837Wso2Wso2 Api Manager8.5HIGHXML External Entity Vulnerability in WSO2 API Manager and Identity Server
CVE-2021-42646Wso2Api Manager9.1CRITICALUnrestricted File Upload Vulnerability in WSO2 Products
CVE-2022-29464Wso2Identity Server Analyticsπ°πΎπ‘EPSS 94%π¦ 9.8CRITICALSession Hijacking Vulnerability in WSO2 API Manager and Other Products
CVE-2020-24703Wso2Identity Server8.8HIGHSession Hijacking Vulnerability in WSO2 API Manager and Identity Server
CVE-2020-24705Wso2Identity Server Analytics8.8HIGHXML External Entity Injection Vulnerability in WSO2 API Manager and API Microgateway
CVE-2020-24589Wso2Api MicrogatewayEPSS 89%9.1CRITICALXML Entity Expansion Vulnerability in WSO2 API Manager and Microgateway
CVE-2020-24590Wso2Api Microgateway9.1CRITICALImproper Outbound Network Access in WSO2 API Manager
CVE-2020-13226Wso2Api Manager9.8CRITICALXXE Vulnerability in WSO2 API Manager and Related Products
CVE-2020-12719Wso2Identity Server Analytics8.7HIGHCross-Site Request Forgery Vulnerability in WSO2 Identity Server
CVE-2016-4311Wso2Identity Server8.8HIGHXML External Entity Vulnerability in WSO2 Identity Server by WSO2
CVE-2016-4312Wso2Identity Server7.5HIGH