Reflected XSS vulnerability can be exploited by tampering a request parameter in Authentication Endpoint. This can be performed in both authenticated and unauthenticated requests.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wso2 api manager 3.1.0 |
||
wso2 api manager 3.2.0 |
||
wso2 identity server as key manager 5.10.0 |
||
wso2 identity server 5.10.0 |