WSO2 Enterprise Integrator through 6.6.0 has an XXE vulnerability where a user (with admin console access) can use the XML validator to make unintended network invocations such as SSRF via an uploaded file.
CPE | Name | Operator | Version |
---|---|---|---|
enterprise_integrator | le | 6.6.0 |