Lucene search
China National Vulnerability DatabaseCNVD-2022-56956HistoryJul 22, 2022 - 12:00 a.m.
SAP NetWeaver Enterprise Portal Cross-Site Scripting Vulnerability (CNVD-2022-56956)
2022-07-2200:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
sap
netweaver
enterprise portal
cross-site scripting
vulnerability
reflective
data integrity
EPSS
0.001
Percentile
33.5%
SAP NetWeaver Enterprise Portal is a Web front-end component of SAP NetWeaver from SAP Germany.SAP NetWeaver Enterprise Portal versions 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, and 7.50 versions have a cross-site scripting vulnerability that stems from a failure to adequately encode user input via web control, resulting in a reflective cross-site scripting (XSS) vulnerability that changes the scope of the attack, which has implications for data integrity. No detailed vulnerability details are currently available.
Related
cve
cve
CVE-2022-35170
2022-07-12 21:15:10
cvelist
cvelist
CVE-2022-35170
2022-07-12 20:28:02
prion
prion
Cross site scripting
2022-07-12 21:15:00
nvd
nvd
CVE-2022-35170
2022-07-12 21:15:10