Reflected XSS in WSO2 EI 6.4.0 ajaxprocessor.jsp
CVE-2022-39809 Published on September 9, 2022

An issue was discovered in WSO2 Enterprise Integrator 6.4.0. A Reflected Cross-Site Scripting (XSS) vulnerability has been identified in the Management Console under /carbon/mediation_secure_vault/properties/ajaxprocessor.jsp via the name parameter. Session hijacking or similar attacks would not be possible.

NVD

Products Associated with CVE-2022-39809

Want to know whenever a new CVE is published for Wso2 Enterprise Integrator? stack.watch will email you.

Wso2 Enterprise Integrator

Exploit Probability

EPSS

0.25%

Percentile

48.17%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Reflected XSS in WSO2 EI 6.4.0 ajaxprocessor.jspCVE-2022-39809 Published on September 9, 2022

Products Associated with CVE-2022-39809

Exploit Probability

Reflected XSS in WSO2 EI 6.4.0 ajaxprocessor.jsp
CVE-2022-39809 Published on September 9, 2022