CVE-2024-5848

Name of the Vulnerable Software and Affected Versions WSO2 products (affected versions not specified)

Description A reflected cross-site scripting (XSS) issue exists due to improper input validation, allowing an attacker to inject malicious JavaScript into server responses from vulnerable service endpoints. Successful exploitation could lead to UI manipulation, redirection to malicious websites, or data exfiltration from the browser.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.