Skip links
Arpine Maghakyan

Arpine Maghakyan

Security Researcher of RedRays.

Security Scan and XSS Vulnerabilities, SAP security note 1109755

Description

The HTMLB header parameters were vulnerable to XSS vulnerabilities

Available fix and Supported packages

  • EPBC2 | 7.00 | 7.00
  • EP-PSERV | 6.0_640 | 6.0_640
  • EP-CM | 6.0_640 | 6.0_640
  • EP-BASIS | 7.10 | 7.11
  • FRAMEWORK | 7.10 | 7.11
  • CM+COLLABORATION 6.0_640 | SP021 | 000000
  • JAVA FRAMEWORK OFFLINE 7.10 | SP008 | 000000
  • PORTAL BASIS 7.10 | SP008 | 000000
  • PORTAL FRAMEWORK 7.00 | SP013 | 000004
  • PORTAL FRAMEWORK 7.00 | SP014 | 000003
  • PORTAL FRAMEWORK 7.00 | SP016 | 000000

Affected component

    EP-PDK-HBJ
    HTMLB Business for Java

CVSS

Score: 0

Exploit

Exploit is not available.
For detailed information please contact the mail [email protected]

URL

https://launchpad.support.sap.com/#/notes/1109755

TAGS

#XSS-Vulnerabilities-cross-site-scripting

More to explorer