Published in: sap note

Security Note Cross site scripting via WD URL parameters, SAP security note 1161767

Author RedRays Team

Published on: October 8, 2009

Description

In NW04 SP21 and below and in NW04S SP08 and below SP releases, Web Dynpro applications have a security vulnerability that allows cross site scripting via Webdynpro URL parameters.

Available fix and Supported packages

SAP_JTECHS | 6.40 | 6.40
SAP_JTECHF | 7.00 | 7.00

Affected component

CVSS

Score: 0

Exploit

Exploit is not available.
For detailed information please contact the mail [email protected]

URL

https://launchpad.support.sap.com/#/notes/1161767

Security Note Cross site scripting via WD URL parameters, SAP security note 1161767

Description

Available fix and Supported packages

Affected component

CVSS

Exploit

URL

TAGS

#Security-problem
#Cross-site-Scripting
#XSS

Description

Available fix and Supported packages

Affected component

CVSS

Exploit

URL

TAGS

#Security-problem#Cross-site-Scripting#XSS

You may also like

#Security-problem
#Cross-site-Scripting
#XSS