Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-xq2c-xc9f-44f4

Опубликовано: 24 мая 2022
Источник: github
Github: Не прошло ревью

Описание

SAP Enterprise Threat Detection, versions 1.0, 2.0, does not sufficiently encode error response pages in case of errors, allowing XSS payload reflecting in the response, leading to reflected Cross Site Scripting.

SAP Enterprise Threat Detection, versions 1.0, 2.0, does not sufficiently encode error response pages in case of errors, allowing XSS payload reflecting in the response, leading to reflected Cross Site Scripting.

Ссылки

EPSS

Процентиль: 41%
0.00191
Низкий

CVE ID

CVE-2020-6254

Связанные уязвимости

nvd логотип

CVE-2020-6254

CVSS3: 6.1
nvd
больше 5 лет назад

SAP Enterprise Threat Detection, versions 1.0, 2.0, does not sufficiently encode error response pages in case of errors, allowing XSS payload reflecting in the response, leading to reflected Cross Site Scripting.

EPSS

Процентиль: 41%
0.00191
Низкий

CVE ID

CVE-2020-6254