Lucene search
China National Vulnerability DatabaseCNVD-2023-100006HistoryDec 14, 2023 - 12:00 a.m.
SAP Biller Direct Cross-Site Scripting Vulnerability
2023-12-1400:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
sap
biller direct
cross-site scripting
vulnerability
web application
germany
filtering
escaping
user-supplied data
exploitation
attacker
SAP Biller Direct is a Web application from SAP Germany. It is used to present customer accounts in an Internet portal. A cross-site scripting vulnerability exists in SAP Biller Direct versions 635 and 750, which stems from the applicationβs lack of effective filtering and escaping of user-supplied data, and can be exploited by an attacker to execute arbitrary Web script or HTML by injecting a crafted payload.
Related
cve
cve
CVE-2023-42479
2023-12-12 01:15:10
nvd
nvd
CVE-2023-42479
2023-12-12 01:15:10
prion
prion
Cross site scripting
2023-12-12 01:15:00
cvelist
cvelist
CVE-2023-42479 Cross-Site Scripting (XSS) vulnerability in SAP Biller Direct
2023-12-12 00:59:36