2 matches found
CVE-2022-4520 WSO2 carbon-registry Advanced Search advancedSearchForm-ajaxprocessor.jsp cross site scripting
A vulnerability was found in WSO2 carbon-registry up to 4.8.11. It has been rated as problematic. Affected by this issue is some unknown functionality of the file components/registry/org.wso2.carbon.registry.search.ui/src/main/resources/web/search/advancedSearchForm-ajaxprocessor.jsp of the...
CVE-2022-4520
The CVE-2022-4520 issue affects WSO2 carbon-registry (up to 4.8.11) in the Advanced Search component, specifically the file Advanced Search advancedSearchForm-ajaxprocessor.jsp. The root cause is XSS via manipulation of arguments mediaType/rightOp/leftOp/rightPropertyValue/leftPropertyValue, with...