Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2019-15108

Disclosure Date: August 16, 2019 (last updated November 27, 2024)
An issue was discovered in WSO2 API Manager 2.6.0 before WSO2-CARBON-PATCH-4.4.0-4457. There is XSS via a crafted filename to the file-upload feature of the event simulator component.
Attack Vector: NetworkPrivileges: HighUser Interaction: Required
0
0