Lucene search
+L

CVE-2016-4316

🗓️ 16 Feb 2017 18:00:00Reported by certccType 
cve
 cve
🔗 web.nvd.nist.gov👁 71 Views🌐 WEB

CVE-2016-4316 Multiple XSS vulnerabilities in WSO2 Carbon 4.4.

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
zdt
WSO2 Carbon 4.4.5 - Persistent Cross-Site Scripting
16 Aug 201600:00
zdt
attackerkb
CVE-2016-4316
17 Feb 201702:59
attackerkb
circl
CVE-2016-4316
16 Aug 201600:00
circl
cnvd
Multiple vulnerabilities in WSO2 Carbon (CNVD-2016-06405)
18 Aug 201600:00
cnvd
cvelist
CVE-2016-4316
16 Feb 201718:00
cvelist
exploitdb
WSO2 Carbon 4.4.5 - Persistent Cross-Site Scripting
16 Aug 201600:00
exploitdb
euvd
EUVD-2016-5316
7 Oct 202500:30
euvd
exploitpack
WSO2 Carbon 4.4.5 - Persistent Cross-Site Scripting
16 Aug 201600:00
exploitpack
github
WSO2 Carbon vulnerable to Cross-site Scripting
14 May 202202:46
github
nvd
CVE-2016-4316
17 Feb 201702:59
nvd
Rows per page
NVD
Node
wso2carbonMatch4.4.5
ParameterPositionPathDescriptionCWE
setNamequery param/carbon/identity-mgt/challenges-mgt.jspXSS via setName parameter in challenges-mgt.jspCWE-79
webappTypequery param/carbon/webapp-list/webapp_info.jspXSS via webappType and/or httpPort parameters in webapp_info.jspCWE-79
httpPortquery param/carbon/webapp-list/webapp_info.jspXSS via webappType and/or httpPort parameters in webapp_info.jspCWE-79
dsNamequery param/carbon/ndatasource/newdatasource.jspXSS via dsName and/or description parameters in newdatasource.jspCWE-79
descriptionquery param/carbon/ndatasource/newdatasource.jspXSS via dsName and/or description parameters in newdatasource.jspCWE-79
phasequery param/carbon/viewflows/handlers.jspXSS via phase parameter in viewflows/handlers.jspCWE-79
urlquery param/carbon/ndatasource/validateconnection-ajaxprocessor.jspXSS via url parameter in validateconnection-ajaxprocessor.jspCWE-79
setNamerequest body/carbon/identity-mgt/challenges-mgt-finish.jspPOST XSS via setName parameter in challenges-mgt-finish.jspCWE-79

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 00:47Current
6Medium risk
Vulners AI Score6
CVSS 24.3
CVSS 36.1
EPSS0.03998
71