Lucene search
PRIOn knowledge basePRION:CVE-2019-0308HistoryJun 12, 2019 - 3:29 p.m.
Code injection
2019-06-1215:29:00
PRIOn knowledge base
www.prio-n.com
4
An authenticated attacker in SAP E-Commerce (Business-to-Consumer application), versions 7.3, 7.31, 7.32, 7.33, 7.54, can change the price of the product to zero and also checkout, by injecting an HTML code in the application that will be executed whenever the victim logs in to the application even on a different machine, leading to Code Injection.
| CPE | Name | Operator | Version |
|---|---|---|---|
| e-commerce | eq | 7.31 | |
| e-commerce | eq | 7.32 | |
| e-commerce | eq | 7.33 | |
| e-commerce | eq | 7.54 | |
| e-commerce | eq | 7.30 |
Related
nvd
nvd
CVE-2019-0308
2019-06-12 15:29:00
cvelist
cvelist
CVE-2019-0308
2019-06-12 14:21:39
cve
cve
CVE-2019-0308
2019-06-12 15:29:00