Identity Server

Researcher Details Critical Authentication Bypasses in WSO2 API Manager and Identity Server WSO2 Critical Auth Bypass, Regex Flaw

Researcher Details Critical Authentication Bypasses in WSO2 API Manager and Identity Server

Do Son October 30, 2025

Security researcher Crnkovic has disclosed three critical vulnerabilities — CVE-2025-9152, CVE-2025-10611, and CVE-2025-9804 — in WSO2 API...

WSO2 Fixes Two Critical Access Control Vulnerabilities (CVE-2025-9804, CVE-2025-10611) Affecting API Manager and Identity Server WSO2 Access Control, Critical API Flaws

WSO2 Fixes Two Critical Access Control Vulnerabilities (CVE-2025-9804, CVE-2025-10611) Affecting API Manager and Identity Server

Do Son October 22, 2025

The WSO2 project has released urgent security advisories addressing two critical access control vulnerabilities—CVE-2025-9804 and CVE-2025-10611—that affect...

Critical Alert 2 Active Exploits Detected Today

Researcher Details Critical Authentication Bypasses in WSO2 API Manager and Identity Server

WSO2 Fixes Two Critical Access Control Vulnerabilities (CVE-2025-9804, CVE-2025-10611) Affecting API Manager and Identity Server