mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-30 18:56:19 +00:00
823 B
823 B
CVE-2019-20442
Description
An issue was discovered in WSO2 API Manager 2.6.0, WSO2 Enterprise Integrator 6.5.0, WSO2 IS as Key Manager 5.7.0, and WSO2 Identity Server 5.8.0. A potential stored Cross-Site Scripting (XSS) vulnerability in roleToAuthorize has been identified in the registry UI.
POC
Reference
- https://cybersecurityworks.com/zerodays/cve-2019-20442-wso2.html
- https://github.com/cybersecurityworks/Disclosed/issues/25
Github
No PoCs found on GitHub currently.