CVE-2025-5770 | WSO2 Identity Server/API Manager/API Control Plane Authentication Endpoint cross site scripting

A vulnerability identified as problematic has been detected in WSO2 Identity Server, API Manager and API Control Plane. Affected is an unknown function of the component Authentication Endpoint. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2025-5770. It is possible to initiate the attack remotely. There is no exploit available.

You should upgrade the affected component.VulDB Recent EntriesRead More