Design/Logic Flaw

2017-09-2118:29:00

PRIOn knowledge base

www.prio-n.com

4.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

50.4%

JSON

WSO2 Data Analytics Server 3.1.0 has XSS in carbon/resources/add_collection_ajaxprocessor.jsp via the collectionName or parentPath parameter.

CPENameOperatorVersion
api_managereq2.1.0
app_managereq1.2.0
application_servereq5.3.0
business_process_servereq3.6.0
business_rules_servereq2.2.0
complex_event_processoreq4.2.0
dashboard_servereq2.0.0
data_analytics_servereq3.1.0
data_services_servereq3.5.1
enterprise_integratoreq6.1.1

Name	Operator	Version
api_manager	eq	2.1.0
app_manager	eq	1.2.0
application_server	eq	5.3.0
business_process_server	eq	3.6.0
business_rules_server	eq	2.2.0
complex_event_processor	eq	4.2.0
dashboard_server	eq	2.0.0
data_analytics_server	eq	3.1.0
data_services_server	eq	3.5.1
enterprise_integrator	eq	6.1.1