Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in the Integration Repository in the SAP Exchange Infrastructure (BC-XI) component in SAP NetWeaver allows remote attackers to inject arbitrary web script or HTML via vectors related to the ESR application and a DIR error.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SAP NetWeaver Exchange Infrastructure 跨站脚本漏洞
Vulnerability Description
SAP NetWeaver是德国思爱普(SAP)公司的一套面向服务的集成化应用平台。SAP Exchange Infrastructure(BC-XI,交换架构)是其中的一个组件,其目的是为非SAP系统提供一个能与SAP系统进行数据和流程交互的平台。 SAP NetWeaver中的SAP BC-XI组件中的Integration Repository中存在跨站脚本漏洞,该漏洞源于DIR错误。远程攻击者可利用该漏洞注入任意Web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A