Primary

Context

WSO2 Products Content Spoofing Vulnerability

Vulnerability

Patched

A content spoofing vulnerability has been identified in multiple WSO2 products, including WSO2 API Manager and WSO2 Identity Server. This vulnerability arises from improper handling of error messages, which are transmitted through URL parameters without adequate validation. As a result, malicious actors can inject arbitrary content into the user interface. Exploiting this vulnerability allows attackers to manipulate error messages displayed in the browser, potentially leading to social engineering attacks by creating deceptive or misleading content.

Impact

Exploitation of this vulnerability could enable social engineering attacks by allowing malicious actors to replace genuine error messages with harmful content.

Remediation

Community users can apply the relevant fixes available on the WSO2 GitHub repository. Support subscription holders should update their product to the specified update level or a higher level to apply the fix.

Added: Sep 23, 2025, 5:18 PM

Updated: Sep 23, 2025, 5:18 PM

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

1.0

exploitability

6.5

remediation

7.7

relevance

0.6

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

1.0

exploitability

6.5

remediation

7.7

relevance

0.6

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

WSO2 Products Content Spoofing Vulnerability

Vulnerability

Impact

Remediation

Affected Products

WSO2 API Manager

WSO2 Identity Server

WSO2 Identity Server as Key Manager

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating