Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SAP NetWeaver Enterprise Portal from 7.0 to 7.02, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not sufficiently encode user controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SAP NetWeaver Enterprise Portal 跨站脚本漏洞
Vulnerability Description
SAP NetWeaver是德国思爱普(SAP)公司的一套面向服务的集成化应用平台,它可为SAP应用提供开发和运行环境。SAP NetWeaver Enterprise Portal是其中的一套门户网站解决方案,它通过Web浏览器提供单点登录信息进行身份验证。 SAP NetWeaver Enterprise Portal中存在跨站脚本漏洞,该漏洞源于程序未能充分编码用户提交的输入。远程攻击者可利用该漏洞在用户的浏览器中执行任意脚本代码。以下版本受到影响:SAP NetWeaver Enterprise
CVSS Information
N/A
Vulnerability Type
N/A