Lucene search
China National Vulnerability DatabaseCNVD-2023-28125HistoryMar 16, 2023 - 12:00 a.m.
SAP NetWeaver Cross-Site Scripting Vulnerability (CNVD-2023-28125)
2023-03-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
sap netweaver
cross-site scripting
vulnerability
user input
sensitive data
user ids
passwords
security
EPSS
0.001
Percentile
36.0%
SAP NetWeaver is a set of integrated service-oriented application platform from SAP Germany. The platform mainly provides a development and runtime environment for SAP applications. A cross-site scripting vulnerability exists in SAP NetWeaver, which stems from insufficient coding of user input and can be exploited to inject code that exposes sensitive data, such as user IDs and passwords.
Related
prion
prion
Cross site scripting
2023-03-14 05:15:00
cve
cve
CVE-2023-0021
2023-03-14 05:15:28
nvd
nvd
CVE-2023-0021
2023-03-14 05:15:28
cvelist
cvelist
CVE-2023-0021 Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver
2023-03-14 04:34:41