CVE-2023-6838 | WSO2 API Manager/Identity Server/IS as Key Manager Authentication Endpoint cross site scripting

Inserito da Angelo Barbosa | Dic 15, 2023 | CVE

A vulnerability, which was classified as problematic, has been found in WSO2 API Manager, Identity Server and IS as Key Manager. Affected by this issue is some unknown functionality of the component Authentication Endpoint. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2023-6838. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-6838 | WSO2 API Manager/Identity Server/IS as Key Manager Authentication Endpoint cross site scripting

Post correlati

CVE-2024-0556 | Full Compass Systems WIC1200 1.1 on Passwords weak encoding for password

CVE-2024-32536 | Trade Pips WP TradingView Plugin up to 1.7 on WordPress cross site scripting

CVE-2024-10080 | chertz WP Easy Post Types Plugin up to 1.4.4 on WordPress cross site scripting

CVE-2023-6881 | zephyrproject-rtos Zephyr up to 3.5 is_mount_point buffer overflow