6 matches found
SAP NetWeaver AS Java Multiple Vulnerabilities (Feb 2024)
SAP NetWeaver Application Server for Java is affected by multiple vulnerabilities, including the following: - The User Admin application of SAP NetWeaver AS for Java insufficiently validates and improperly encodes the incoming URL parameters before including them into the redirect URL. This resul...
CVE-2024-22126
creationtimestamp| type| source ---|---|--- 2024-02-13 03:21:37+00:00| seen| https://t.me/ctinow/183582 2025-02-14 10:01:38+00:00| seen| Telegram/5m0bsIrq9XuwAfgpYHfzeZtvT9Xv8CAzQGcVGl2ry5agsGrd...
CVE-2024-22126
The User Admin application of SAP NetWeaver AS for Java - version 7.50, insufficiently validates and improperly encodes the incoming URL parameters before including them into the redirect URL. This results in Cross-Site Scripting XSS vulnerability, leading to a high impact on confidentiality and...
CVE-2024-22126 Cross Site Scripting vulnerability in SAP NetWeaver AS Java (User Admin Application)
The User Admin application of SAP NetWeaver AS for Java - version 7.50, insufficiently validates and improperly encodes the incoming URL parameters before including them into the redirect URL. This results in Cross-Site Scripting XSS vulnerability, leading to a high impact on confidentiality and...
CVE-2024-22126
CVE-2024-22126 – SAP NetWeaver AS Java (User Admin) XSS : The User Admin application in SAP NetWeaver AS Java 7.50 insufficiently validates and improperly encodes incoming URL parameters before including them in the redirect URL, enabling Cross-Site Scripting. Impact: high confidentiality impact;...
CVE-2024-22126 Cross Site Scripting vulnerability in SAP NetWeaver AS Java (User Admin Application)
The User Admin application of SAP NetWeaver AS for Java - version 7.50, insufficiently validates and improperly encodes the incoming URL parameters before including them into the redirect URL. This results in Cross-Site Scripting XSS vulnerability, leading to a high impact on confidentiality and...