WSO2 Enterprise Integrator up to and including 6.6.0 has an XXE vulnerability where a user (with admin console access) can use the XML validator to make unintended network invocations such as SSRF via an uploaded file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wso2 enterprise integrator |