Количество 3
Количество 3
CVE-2023-33984
SAP NetWeaver (Design Time Repository) - version 7.50, returns an unfavorable content type for some versioned files, which could allow an authorized attacker to create a file with a malicious content and send a link to a victim in an email or instant message. Under certain circumstances, this could lead to Cross-Site Scripting vulnerability.
GHSA-98rj-9x2h-22g5
SAP NetWeaver (Design Time Repository) - version 7.50, returns an unfavorable content type for some versioned files, which could allow an authorized attacker to create a file with a malicious content and send a link to a victim in an email or instant message. Under certain circumstances, this could lead to Cross-Site Scripting vulnerability.
BDU:2023-04032
Уязвимость программной интеграционной платформы SAP NetWeaver Design Time Repository, позволяющая нарушителю внедрить произвольный HTML-код
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-33984 SAP NetWeaver (Design Time Repository) - version 7.50, returns an unfavorable content type for some versioned files, which could allow an authorized attacker to create a file with a malicious content and send a link to a victim in an email or instant message. Under certain circumstances, this could lead to Cross-Site Scripting vulnerability. | CVSS3: 6.4 | 0% Низкий | больше 2 лет назад |
| GHSA-98rj-9x2h-22g5 SAP NetWeaver (Design Time Repository) - version 7.50, returns an unfavorable content type for some versioned files, which could allow an authorized attacker to create a file with a malicious content and send a link to a victim in an email or instant message. Under certain circumstances, this could lead to Cross-Site Scripting vulnerability. | CVSS3: 6.4 | 0% Низкий | больше 2 лет назад |
 | BDU:2023-04032 Уязвимость программной интеграционной платформы SAP NetWeaver Design Time Repository, позволяющая нарушителю внедрить произвольный HTML-код | CVSS3: 6.4 | 0% Низкий | больше 2 лет назад |
Уязвимостей на страницу