Abstract Advisory Information
WSO2 API Manager is an open source approach that addresses full API lifecycle management, monetization, and policy enforcement.
Uploaded documents for API’s documentation on publisher part are available for unauthenticated user.
Authors: Julien Oury–Nogues
Name: WSO2 API Manager
Common Vulnerability Scoring System
Vulnerability Disclosure Timeline
- 19/10/2018 – Vulnerability discovered
- 22/10/2018 – Contact WSO2 security team
- 29/10/2018 – Acknowledgement From WSO2 security team
- 21/02/2019 – Public disclosure