Latest Security News about cve 2019 18881

WSO2 IS as Key Manager 5.7.0 allows web vulnerabilities

Overview : An attacker can trick a privileged user while using WSO2 IS as Key Manager Affected Product(s) : WSO2 IS as Key Manager 5.7.0 Vulnerability Details : CVE ID : CVE-2019-18882 A reflected XSS attack could be performed in the dashboard user profile by sending an HTTP GET request with harmful request parameters. Further, […]