PT-2019-15876 · Wso2 · Wso2 Enterprise Integrator

Published

2019-12-04

Updated

2019-12-06

CVE-2019-19587

CVSS v3.1

6.1

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions WSO2 Enterprise Integrator version 6.5.0

Description Reflected XSS occurs when updating the message processor configuration from the source view in the Management Console.

Recommendations For WSO2 Enterprise Integrator version 6.5.0, update the software to a version that includes a fix for this issue, as using the current version may pose a security risk. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2019-19587

Affected Products

Wso2 Enterprise Integrator

PT-2019-15876 · Wso2 · Wso2 Enterprise Integrator

CVE-2019-19587

Weakness Enumeration

Related Identifiers

Affected Products

References · 3