{"vulnerability": "CVE-2019-2044", "sightings": [{"uuid": "ab18d702-3488-407e-b4ce-54d5ceffd2a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-20443", "type": "seen", "source": "https://t.me/cveNotify/492", "content": "\ud83d\udea8 CVE-2019-20443\nAn issue was discovered in WSO2 API Manager 2.6.0, WSO2 Enterprise Integrator 6.5.0, WSO2 IS as Key Manager 5.7.0, and WSO2 Identity Server 5.8.0. A potential stored Cross-Site Scripting (XSS) vulnerability in mediaType has been identified in the registry UI.\n\n\ud83c\udf96@cveNotify", "creation_timestamp": "2020-01-28T03:37:44.000000Z"}, {"uuid": "40d716d3-3392-4744-85e0-a2f5445e9be0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-20440", "type": "seen", "source": "https://t.me/cveNotify/489", "content": "\ud83d\udea8 CVE-2019-20440\nAn issue was discovered in WSO2 API Manager 2.6.0. A potential Reflected Cross-Site Scripting (XSS) vulnerability has been identified in the update API documentation feature of the API Publisher.\n\n\ud83c\udf96@cveNotify", "creation_timestamp": "2020-01-28T03:37:38.000000Z"}, {"uuid": "ae0424fc-3b1f-4348-abae-b6ea8c8ffaa9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-20442", "type": "seen", "source": "https://t.me/cveNotify/491", "content": "\ud83d\udea8 CVE-2019-20442\nAn issue was discovered in WSO2 API Manager 2.6.0, WSO2 Enterprise Integrator 6.5.0, WSO2 IS as Key Manager 5.7.0, and WSO2 Identity Server 5.8.0. A potential stored Cross-Site Scripting (XSS) vulnerability in roleToAuthorize has been identified in the registry UI.\n\n\ud83c\udf96@cveNotify", "creation_timestamp": "2020-01-28T03:37:40.000000Z"}]}