Описание
Due to a Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver ABAP Platform, an unauthenticated attacker could generate a malicious link and make it publicly accessible. If an authenticated user clicks on this link, the injected input is processed during the website�s page generation, resulting in the creation of malicious content. When this malicious content gets executed, the attacker could gain the ability to access/modify information within the scope of victim�s browser.
EPSS
6.1 Medium
CVSS3
Дефекты
Связанные уязвимости
Due to a Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver ABAP Platform, an unauthenticated attacker could generate a malicious link and make it publicly accessible. If an authenticated user clicks on this link, the injected input is processed during the website�s page generation, resulting in the creation of malicious content. When this malicious content gets executed, the attacker could gain the ability to access/modify information within the scope of victim�s browser.
Уязвимость программной интеграционной платформы SAP NetWeaver ABAP, связанная с недостаточной защитой структуры веб-страницы, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
EPSS
6.1 Medium
CVSS3