First published: Mon Jan 27 2020(Updated: )
An issue was discovered in WSO2 API Manager 2.6.0. A potential Reflected Cross-Site Scripting (XSS) vulnerability has been identified in the update API documentation feature of the API Publisher.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
WSO2 API Manager | =2.6.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2019-20440 is medium with a CVSS score of 4.8.
The affected software for CVE-2019-20440 is WSO2 API Manager 2.6.0.
CVE-2019-20440 is a potential Reflected Cross-Site Scripting (XSS) vulnerability in the update API documentation feature of the API Publisher in WSO2 API Manager 2.6.0.
To fix CVE-2019-20440, it is recommended to update to the latest version of WSO2 API Manager and follow the security advisory provided by WSO2.
More information about CVE-2019-20440 can be found in the provided references: [link1], [link2], [link3].