admin/GobyVuls
1
0
Fork 0
mirror of https://github.com/gobysec/GobyVuls.git synced 2025-05-05 18:27:13 +00:00
Code Issues Packages Projects Releases Wiki Activity
GobyVuls/CVE-2020-24589.md
之乎者也 8bd4d9ffec
Create CVE-2020-24589.md
2023-04-07 11:32:03 +08:00

1.4 KiB
Raw Blame History

WSO2 API Manager save_artifact_ajaxprocessor.jsp XXE Vulnerability (CVE-2020-24589)

Vulnerability WSO2 API Manager save_artifact_ajaxprocessor.jsp XXE Vulnerability (CVE-2020-24589)
Chinese name WSO2 API Manager 系统 save_artifact_ajaxprocessor.jsp XXE 漏洞CVE-2020-24589
CVSS core 9.1
FOFA Query (click to view the results directly) title="WSO2" || header="Server: WSO2 Carbon Server" || banner="Server: WSO2 Carbon Server"
Number of assets affected 15231
Description WSO2 API Manager is a set of API lifecycle management solutions from WSO2 in the United States. A vulnerability exists in WSO2 API Manager. The following products and versions are affected: WSO2 API Manager from version 3.1.0 and API Microgateway version 2.2.0, the attacker can read arbitrary files and detect intranet information, etc.
Impact A vulnerability exists in WSO2 API Manager. The following products and versions are affected: WSO2 API Manager from version 3.1.0 and API Microgateway version 2.2.0, the attacker can read arbitrary files and detect intranet information, etc.