WSO2 EI 6.4.0 Reflected XSS in ajaxprocessor.jsp
CVE-2022-39810 Published on September 9, 2022

An issue was discovered in WSO2 Enterprise Integrator 6.4.0. A Reflected Cross-Site Scripting (XSS) vulnerability has been identified in the Management Console under /carbon/ndatasource/validateconnection/ajaxprocessor.jsp via the driver parameter. Session hijacking or similar attacks would not be possible.

NVD

Products Associated with CVE-2022-39810

Want to know whenever a new CVE is published for Wso2 Enterprise Integrator? stack.watch will email you.

Wso2 Enterprise Integrator

Exploit Probability

EPSS

0.34%

Percentile

56.94%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

WSO2 EI 6.4.0 Reflected XSS in ajaxprocessor.jspCVE-2022-39810 Published on September 9, 2022

Products Associated with CVE-2022-39810

Exploit Probability

WSO2 EI 6.4.0 Reflected XSS in ajaxprocessor.jsp
CVE-2022-39810 Published on September 9, 2022