An issue was discovered in WSO2 Enterprise Integrator 6.4.0. A Reflected Cross-Site Scripting (XSS) vulnerability has been identified in the Management Console under /carbon/mediation_secure_vault/properties/ajaxprocessor.jsp via the name parameter. Session hijacking or similar attacks would not be possible.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2022-09-09T16:39:16

Updated: 2024-08-03T12:07:42.683Z

Reserved: 2022-09-05T00:00:00

Link: CVE-2022-39809

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-09-09T17:15:08.550

Modified: 2024-11-21T07:18:17.763

Link: CVE-2022-39809

cve-icon Redhat

No data.