3 matches found
WSO2多款产品 代码问题漏洞
WSO2 Identity Server IS and others are products of WSO2, Inc.WSO2 Identity Server is an identity server.WSO2 Identity Server as Key Manager is an identity server.WSO2 Open Banking IAM is an identity and access management solution for the Open Banking OB space. WSO2 Open Banking IAM is an identity...
WSO2多款产品 安全漏洞
WSO2 API Manager and others are products of WSO2, Inc. of the U.S. WSO2 API Manager is a suite of API lifecycle management solutions.WSO2 Identity Server IS is an identity server.WSO2 Open Banking AM is an open banking gas pedal. A security vulnerability exists in a number of WSO2 products that...
CVE-2022-29464
Certain WSO2 products allow unrestricted file upload with resultant remote code execution. The attacker must use a /fileupload endpoint with a Content-Disposition directory traversal sequence to reach a directory under the web root, such as a ../../../../repository/deployment/server/webapps...