WSO2 Management Console through 5.10 allows XSS via the carbon/admin/login.jsp msgId parameter.
References
Link | Resource |
---|---|
https://github.com/JHHAX/CVE-2020-17453-PoC | Exploit Third Party Advisory |
https://security.docs.wso2.com/en/latest/security-announcements/security-advisories/2021/WSO2-2020-1132/ | |
https://twitter.com/JacksonHHax/status/1374681422678519813 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-04-05T00:00:00
Updated: 2024-01-11T02:23:53.848089
Reserved: 2020-08-09T00:00:00
Link: CVE-2020-17453
JSON object: View
NVD Information
Status : Modified
Published: 2021-04-05T22:15:12.633
Modified: 2024-01-11T03:15:08.600
Link: CVE-2020-17453
JSON object: View
Redhat Information
No data.
CWE