SAP NetWeaver AS is a SAP network application server from SAP. It not only provides network services, but also the basic platform for SAP software. A cross-site scripting vulnerability exists in SAP NetWeaver AS ABAP, which stems from insufficiently coded user-controlled input in SAP GUI for HTML-based applications, and can be exploited by an attacker to execute arbitrary Web script or HTML by injecting a crafted payload.
CPE | Name | Operator | Version |
---|---|---|---|
sap sap netweaver as | eq | 7.89 | |
sap sap netweaver as | eq | 7.93 |