Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Due to missing input validation, SAP Financial Consolidation, before versions 10.0 and 10.1, enables an attacker to use crafted input to interfere with the structure of the surrounding query leading to XPath Injection.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SAP Financial Consolidation 安全漏洞
Vulnerability Description
SAP Financial Consolidation是德国思爱普(SAP)公司的一套财务报表解决方案。该产品主要用于自动化公司间对账和抵销、货币换算并提供财务报表生成等功能。 SAP Financial Consolidation 10.0之前版本和10.1之前版本中存在安全漏洞。该漏洞源于程序没有正确处理用户提供的输入。攻击者可利用该漏洞实施XPath注入攻击。
CVSS Information
N/A
Vulnerability Type
N/A