Security News > 2015 > May > XSS, CSRF Vulnerabilities identitified in WSO2 Identity Server (Threatpost)

XSS, CSRF Vulnerabilities identitified in WSO2 Identity Server (Threatpost)

2015-05-13 18:45

A handful of vulnerabilities have been identified in WSO2 Identity Server that could lead to takeover, firewall bypass, and potentially open subsequent internal servers up to further attacks.

News URL

http://threatpost.com/xss-csrf-vulnerabilities-identitified-in-wso2-identity-server/112789

#XSS #csrf #vulnerabilities #threatpost #server

Related news

Mitel MiCollab, Oracle WebLogic Server vulnerabilities exploited by attackers (source)
Rsync vulnerabilities allow remote code execution on servers, patch quickly! (source)
SAP fixes critical vulnerabilities in NetWeaver application servers (source)
Critical SimpleHelp vulnerabilities fixed, update your server instances! (source)
CISA Adds Five-Year-Old jQuery XSS Flaw to Exploited Vulnerabilities List (source)
Zimbra Releases Security Updates for SQL Injection, Stored XSS, and SSRF Vulnerabilities (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Wso2		31	0	51	8	5	64

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.