Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-Site Scripting (XSS) vulnerability on WSO2 API Manager 3.1.0. By exploiting a Cross-site scripting vulnerability the attacker can hijack a logged-in user’s session by stealing cookies which means that a malicious hacker can change the logged-in user’s password and invalidate the session of the victim while the hacker maintains access.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
WSO2 API Manager 跨站脚本漏洞
Vulnerability Description
WSO2 API Manager是美国WSO2公司的一套API生命周期管理解决方案。 WSO2 API Manager 3.1.0 存在跨站脚本漏洞,攻击者可利用该漏洞可以通过窃取cookie来劫持登录用户的会话,在保持访问权限的同时更改登录用户的密码,使受害者的会话无效。
CVSS Information
N/A
Vulnerability Type
N/A