CVE-2019-0238

2019-01-08T20:29:00
ID CVE-2019-0238
Type cve
Reporter cve@mitre.org
Modified 2019-01-17T18:21:00

Description

SAP Commerce (previously known as SAP Hybris Commerce), before version 6.7, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.