CVE-2023-6838 Information

Description

Reflected XSS vulnerability can be exploited by tampering a request parameter in Authentication Endpoint. This can be performed in both authenticated and unauthenticated requests.

Reference

https://security.docs.wso2.com/en/latest/security-announcements/security-advisories/2021/WSO2-2020-1233/