CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

BDU FSTEC•added 2023/07/26 12:0 a.m.•6 views

The vulnerability of the Variant Management component in the SAP UI5 software platform, related to the lack of measures for cleaning incoming data, allows attackers to execute cross-site scripting attacks (Stored XSS).

The vulnerability of the Grantor Management component in the SAP CRM ABAP integration module for managing customer relationships is related to the lack of measures to cleanse input data. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks Stored XSS...

8.2CVSS7.1AI score0.00481EPSS

Exploits0References3Affected Software1

BDU FSTEC•added 2023/07/26 12:0 a.m.•5 views

The vulnerability of the Grantor Management component in the SAP CRM ABAP integration module for managing customer relationships, related to the lack of measures to cleanse input data, allows attackers to execute cross-site scripting attacks.

The vulnerability of the Grantor Management component in the SAP CRM ABAP integration module for managing customer relationships exists due to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

6.4CVSS6.2AI score0.00413EPSS

Exploits0References3Affected Software1

NVD•added 2023/06/13 3:15 a.m.•13 views

CVE-2023-33986

SAP CRM ABAP Grantor Management - versions 700, 701, 702, 712, 713, 714, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability. After successful exploitation, an attacker can cause limited impact on confidentiality and integrity of the applicatio...

6.1CVSS6AI score0.00413EPSS

Exploits0References2

OSV•added 2023/06/13 3:15 a.m.•2 views

CVE-2023-33986

6.1CVSS6.4AI score0.00413EPSS

Exploits0References2

Prion•added 2023/06/13 3:15 a.m.•19 views

Cross site scripting

5.8CVSS6AI score0.00413EPSS

Exploits0References2Affected Software1

Cvelist•added 2023/06/13 2:45 a.m.•11 views

CVE-2023-33986 Cross-Site Scripting (XSS) vulnerability in SAP CRM ABAP (Grantor Management)

6.1CVSS6.2AI score0.00413EPSS

Exploits0References2

CVE•added 2023/06/13 2:45 a.m.•43 views

CVE-2023-33986

CVE-2023-33986 affects SAP CRM ABAP (Grantor Management) versions 700–714. The root cause is insufficient encoding of user-controlled inputs, leading to a Cross-Site Scripting (XSS) vulnerability. Exploitation can result in a limited impact on confidentiality and integrity of the application (no ...

6.1CVSS6AI score0.00413EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2023/06/13 12:0 a.m.•6 views

PT-2023-3745 · Sap · Sap Crm Abap

Name of the Vulnerable Software and Affected Versions: SAP CRM ABAP Grantor Management versions 700 through 714 Description: The issue arises from insufficient encoding of user-controlled inputs, leading to a Cross-Site Scripting XSS vulnerability. This vulnerability can be exploited by a remote...

6.4CVSS5.8AI score0.00413EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by