Vulnerabilities > Wso2 > API Manager > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-01-28 CVE-2019-20435 Cross-site Scripting vulnerability in Wso2 API Manager 2.6.0
An issue was discovered in WSO2 API Manager 2.6.0.
network
low complexity
wso2 CWE-79
4.8
2020-01-28 CVE-2019-20434 Cross-site Scripting vulnerability in Wso2 API Manager 2.6.0
An issue was discovered in WSO2 API Manager 2.6.0.
network
low complexity
wso2 CWE-79
4.8
2019-08-16 CVE-2019-15108 Cross-site Scripting vulnerability in Wso2 API Manager
An issue was discovered in WSO2 API Manager 2.6.0 before WSO2-CARBON-PATCH-4.4.0-4457.
network
low complexity
wso2 CWE-79
4.8
2019-05-21 CVE-2019-6513 Unrestricted Upload of File with Dangerous Type vulnerability in Wso2 API Manager 2.6.0
An issue was discovered in WSO2 API Manager 2.6.0.
network
low complexity
wso2 CWE-434
5.5
2019-05-14 CVE-2019-6515 Unspecified vulnerability in Wso2 API Manager 2.6.0
An issue was discovered in WSO2 API Manager 2.6.0.
network
low complexity
wso2
5.0
2019-05-14 CVE-2019-6512 Server-Side Request Forgery (SSRF) vulnerability in Wso2 API Manager 2.6.0
An issue was discovered in WSO2 API Manager 2.6.0.
network
low complexity
wso2 CWE-918
4.0