CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

RedhatCVE•added 2025/10/25 10:18 a.m.•5 views

CVE-2025-5350

SSRF and Reflected XSS Vulnerabilities exist in multiple WSO2 products within the deprecated Try-It feature, which was accessible only to administrative users. This feature accepted user-supplied URLs without proper validation, leading to server-side request forgery SSRF. Additionally, the...

5.9CVSS5.6AI score0.00654EPSS

Exploits0References1

CNNVD•added 2025/10/25 12:0 a.m.•1 views

WSO2 API Manager 安全漏洞

WSO2 API Manager is a suite of API lifecycle management solutions from US-based WSO2. A security vulnerability exists in WSO2 API Manager that stems from the Try-It feature not properly validating user-supplied URLs, which could lead to server-side request forgery and reflective cross-site...

5.9CVSS6.1AI score0.00654EPSS

Exploits0References2

NVD•added 2025/10/24 10:15 a.m.•2 views

CVE-2025-5350

5.9CVSS0.00654EPSS

Exploits0References1

OSV•added 2025/10/24 10:15 a.m.•2 views

CVE-2025-5350

4.8CVSS5.5AI score

Exploits0References1

Positive Technologies•added 2025/10/24 12:0 a.m.•2 views

PT-2025-43609

Name of the Vulnerable Software and Affected Versions WSO2 products affected versions not specified Description The Try-It feature, accessible to administrative users, contains server-side request forgery SSRF and reflected cross-site scripting XSS issues. The feature does not properly validate...

5.9CVSS5.2AI score0.00654EPSS

Exploits0References10

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by