10 matches found
EUVD-2016-7744
Malware in sbrugna...
Cross site scripting
Cross-site scripting XSS vulnerability in the Inbox Search feature in Hybris Management Console HMC in SAP Hybris before 6.0 allows remote attackers to inject arbitrary web script or HTML via the itemsperpage parameter...
CVE-2016-6858
Cross-site scripting XSS vulnerability in the Create Employee feature in Hybris Management Console HMC in SAP Hybris before 5.0.4.11, 5.1.0.x before 5.1.0.11, 5.1.1.x before 5.1.1.12, 5.2.0.x and 5.3.0.x before 5.3.0.10, 5.4.x before 5.4.0.9, 5.5.0.x before 5.5.0.9, 5.5.1.x before 5.5.1.10, 5.6.x...
CVE-2016-6857
The CVE-2016-6857 entry documents a Cross-site scripting (XSS) vulnerability in the SAP Hybris Management Console (HMC) Create Catalogue feature. Affected products are SAP Hybris/HMC versions prior to 5.2.0.13, 5.3.x prior to 5.3.0.11, 5.4.x prior to 5.4.0.11, 5.5.0.x prior to 5.5.0.10, 5.5.1.x p...
CVE-2016-6856
CVE-2016-6856 describes a cross-site scripting (XSS) vulnerability in the Inbox Search feature of the SAP Hybris Hybris Management Console (HMC) prior to version 6.0. The issue allows remote attackers to inject arbitrary web script or HTML via the itemsperpage parameter. The provided connected so...
CVE-2016-6856
Cross-site scripting XSS vulnerability in the Inbox Search feature in Hybris Management Console HMC in SAP Hybris before 6.0 allows remote attackers to inject arbitrary web script or HTML via the itemsperpage parameter...
SAP Hybris Management Console HTML Injection Vulnerability
SAP Hybris Management Console HMC is a suite of enterprise-class multichannel e-commerce and product content management PCM software from SAP. An HTML injection vulnerability exists in SAP HMC version 5.6, which stems from the program failing to adequately filter user-submitted input. An attacker...
SAP Hybris Management Console Cross-Site Scripting Vulnerability
SAP Hybris Management Console HMC is a suite of enterprise-class multichannel e-commerce and product content management PCM software from SAP. A cross-site scripting vulnerability exists in SAP HMC version 5.6, which stems from the program's failure to adequately filter user-submitted input. When...
SAP Hybris Management Console Information Disclosure Vulnerability
SAP Hybris Management Console HMC is a suite of enterprise-class multichannel e-commerce and product content management PCM software from SAP. An information disclosure vulnerability exists in SAP HMC, which can be exploited by attackers to obtain sensitive information...
SAP Console HTML Injection Vulnerability
SAP Console is a set of distribution components from SAP that supports the connection of exchange information within the SAP system. An html injection vulnerability exists in SAP Hybris Management Console version 5.6. An attacker could exploit this vulnerability to execute arbitrary script code i...