漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Multiple vulnerabilities in SAP NetWeaver Application Server ABAP
Vulnerability Description
SAP NetWeaver Application Server ABAP and ABAP Platform allows an unauthenticated attacker to create a malicious link which they can make publicly available. When an authenticated victim clicks on this malicious link, injected input data will be used by the web site page generation to create content which when executed in the victim's browser leading to low impact on Confidentiality and Integrity with no effect on Availability of the application.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
SAP NetWeaver Application Server ABAP and ABAP Platform 跨站脚本漏洞
Vulnerability Description
SAP NetWeaver Application Server ABAP and ABAP Platform是德国思爱普(SAP)公司的一个运行和开发基于ABAP语言的应用程序的平台。 SAP NetWeaver Application Server ABAP and ABAP Platform 存在跨站脚本漏洞,该漏洞源于未验证攻击者可创建恶意链接,当已验证受害者点击时可能导致浏览器执行注入内容。
CVSS Information
N/A
Vulnerability Type
N/A