CVE-2018-2505

🗓️ 11 Dec 2018 23:00:00Reported by sapType

SAP Commerce XSS vulnerability (CVE-2018-2505) fixed in versions 6.2-6.

Reporter	Title	Published	Views	Family All 6
Circl	CVE-2018-2505	11 Dec 201816:16	–	circl
CVE	CVE-2018-2505	11 Dec 201823:00	–	cve
EUVD	EUVD-2018-14360	7 Oct 202500:30	–	euvd
NVD	CVE-2018-2505	11 Dec 201822:29	–	nvd
OSV	CVE-2018-2505	11 Dec 201822:29	–	osv
Prion	Cross site scripting	11 Dec 201822:29	–	prion

[
  {
    "product": "SAP Commerce (SAP Hybris Commerce)",
    "vendor": "SAP",
    "versions": [
      {
        "status": "affected",
        "version": "6.2"
      },
      {
        "status": "affected",
        "version": "6.3"
      },
      {
        "status": "affected",
        "version": "6.4"
      },
      {
        "status": "affected",
        "version": "6.5"
      },
      {
        "status": "affected",
        "version": "6.6"
      },
      {
        "status": "affected",
        "version": "6.7"
      }
    ]
  }
]

Source	Link
securityfocus	www.securityfocus.com/bid/106151
launchpad	www.launchpad.support.sap.com/
wiki	www.wiki.scn.sap.com/wiki/pages/viewpage.action

12 Dec 2018 10:57Current

6Medium risk

Vulners AI Score6

EPSS0.00418