Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
[CVE-2024-39594] Multiple Cross-Site Scripting (XSS) vulnerabilities in SAP Business Warehouse - Business Planning and Simulation
Vulnerability Description
SAP Business Warehouse - Business Planning and Simulation application does not sufficiently encode user controlled inputs, resulting in Reflected Cross-Site Scripting (XSS) vulnerability. After successful exploitation, an attacker can cause low impact on the confidentiality and integrity of the application.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
SAP Business Warehouse 跨站脚本漏洞
Vulnerability Description
SAP Business Warehouse是德国思爱普(SAP)公司的一种企业级数据仓库系统,主要目的是帮助企业整合来自不同系统的数据,以便进行数据分析和决策制定。 SAP Business Warehouse 存在跨站脚本漏洞,该漏洞源于没有充分编码用户控制的输入,导致反射型跨站脚本(XSS)漏洞,成功利用后,攻击者可以对应用程序的机密性和完整性产生低影响。
CVSS Information
N/A
Vulnerability Type
N/A