First published: Wed Dec 04 2019(Updated: )
In WSO2 Enterprise Integrator 6.5.0, reflected XSS occurs when updating the message processor configuration from the source view in the Management Console.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
WSO2 Enterprise Integrator | =6.5.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-19587 is a reflected XSS vulnerability that occurs when updating the message processor configuration from the source view in WSO2 Enterprise Integrator 6.5.0.
CVE-2019-19587 has a severity rating of 6.1 (medium).
CVE-2019-19587 affects WSO2 Enterprise Integrator version 6.5.0.
CVE-2019-19587 is classified under CWE-79, which is Cross-Site Scripting (XSS).
To fix CVE-2019-19587, update to a patched version of WSO2 Enterprise Integrator.