Lucene search
Veracode Vulnerability DatabaseVERACODE:35461HistoryMay 10, 2022 - 7:48 a.m.
Cross-site Scripting (XSS)
2022-05-1007:48:26
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.001 Low
EPSS
Percentile
44.6%
org.wso2.carbon.identity.application.authentication.framework is vulnerable to cross-site scripting. An attacker can inject and execute malicious javascript through the authenticationEndpointURL parameter in readAuthenticationEndpointURL function of FileBasedConfigurationBuilder.java
Related
cve
cve
CVE-2020-27885
2020-10-29 21:15:15
osv
osv
CVE-2020-27885
2020-10-29 21:15:15
cvelist
cvelist
CVE-2020-27885
2020-10-29 20:14:42
nvd
nvd
CVE-2020-27885
2020-10-29 21:15:15
prion
prion
Cross site scripting
2020-10-29 21:15:00