CVE-2024-0392 | WSO2 Enterprise Integrator up to 6.6.0.178 Setting cross-site request forgery

Posted by Angelo Barbosa | Feb 27, 2025 | CVE

A vulnerability has been found in WSO2 Enterprise Integrator up to 6.6.0.178 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Setting Handler. The manipulation leads to cross-site request forgery.

This vulnerability is known as CVE-2024-0392. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-0392 | WSO2 Enterprise Integrator up to 6.6.0.178 Setting cross-site request forgery

Related Posts

CVE-2024-1746 | Testimonial Slider Plugin up to 2.3.7 on WordPress Setting cross site scripting

CVE-2024-1726 | Quarkus RESTEasy Reactive resource consumption

CVE-2024-28578 | FreeImage 3.19.0 r1909 RAS Image Load buffer overflow

CVE-2024-3167 | Ocean Extra Plugin up to 2.2.6 on WordPress cross site scripting