Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2024-27902
HistoryMar 12, 2024 - 1:15 a.m.

Cross site scripting

2024-03-1201:15:00
PRIOn knowledge base
www.prio-n.com
10
sap
netweaver
cross-site scripting
xss
input encoding
browser code execution
data modification

0.0004 Low

EPSS

Percentile

9.0%

JSON

Applications based on SAP GUI for HTML in SAP NetWeaver AS ABAP - versions 7.89, 7.93, do not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.Β A successful attack can allow a malicious attacker to access and modify data through their ability to execute code in a user’s browser. There is no impact on the availability of the system

Related

nvd 1
cvelist 1
cve 1
nessus 1
cnvd 1
nvd
nvd
CVE-2024-27902
2024-03-12 01:15:50
cvelist
cvelist
CVE-2024-27902 Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP applications based on SAPGUI for HTML (WebGUI)
2024-03-12 00:45:08
cve
cve
CVE-2024-27902
2024-03-12 01:15:50
nessus
nessus
SAP NetWeaver AS ABAP XSS (March 2024)
2024-03-13 00:00:00
cnvd
cnvd
SAP NetWeaver AS Cross-Site Scripting Vulnerability (CNVD-2024-13534)
2024-03-14 00:00:00

0.0004 Low

EPSS

Percentile

9.0%

JSON
Related for PRION:CVE-2024-27902
nvd1cvelist1cve1nessus1cnvd1