29 matches found
EUVD-2010-2357
Malware in sbrugna...
EUVD-2013-7129
Malware in sbrugna...
CVE-2013-7357
Unspecified vulnerability in the configuration service in SAP J2EE Engine allows remote attackers to obtain credential information via unknown vectors...
CVE-2018-17865
A cross-site scripting XSS vulnerability in SAP J2EE Engine 7.01 allows remote attackers to inject arbitrary web script via the wsdlPath parameter to /ctcprotocol/Protocol. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
CVE-2018-17862
A cross-site scripting XSS vulnerability in SAP J2EE Engine/7.01/Fiori allows remote attackers to inject arbitrary web script via the sysjdbc parameter to /TestJDBCWeb/test2. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
CVE-2018-17865
A cross-site scripting XSS vulnerability in SAP J2EE Engine 7.01 allows remote attackers to inject arbitrary web script via the wsdlPath parameter to /ctcprotocol/Protocol. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
CVE-2018-17862
A cross-site scripting XSS vulnerability in SAP J2EE Engine/7.01/Fiori allows remote attackers to inject arbitrary web script via the sysjdbc parameter to /TestJDBCWeb/test2. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
CVE-2018-17865
A cross-site scripting XSS vulnerability in SAP J2EE Engine 7.01 allows remote attackers to inject arbitrary web script via the wsdlPath parameter to /ctcprotocol/Protocol. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
CVE-2018-17861
A cross-site scripting XSS vulnerability in SAP J2EE Engine/7.01/Portal/EPP allows remote attackers to inject arbitrary web script via the wsdlLib parameter to /ctcprotocol/Protocol. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
CVE-2018-17861
A cross-site scripting XSS vulnerability in SAP J2EE Engine/7.01/Portal/EPP allows remote attackers to inject arbitrary web script via the wsdlLib parameter to /ctcprotocol/Protocol. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
Cross site scripting
UNSUPPORTED WHEN ASSIGNED A cross-site scripting XSS vulnerability in SAP J2EE Engine/7.01/Fiori allows remote attackers to inject arbitrary web script via the sysjdbc parameter to /TestJDBCWeb/test2. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
Cross site scripting
UNSUPPORTED WHEN ASSIGNED A cross-site scripting XSS vulnerability in SAP J2EE Engine 7.01 allows remote attackers to inject arbitrary web script via the wsdlPath parameter to /ctcprotocol/Protocol. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
CVE-2018-17861
A cross-site scripting XSS vulnerability in SAP J2EE Engine/7.01/Portal/EPP allows remote attackers to inject arbitrary web script via the wsdlLib parameter to /ctcprotocol/Protocol. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
CVE-2018-17865
SAP J2EE Engine 7.01 is affected by a cross-site scripting (XSS) vulnerability that allows remote attackers to inject arbitrary scripts via the wsdlPath parameter to /ctcprotocol/Protocol. The issue affects products that are no longer supported by the maintainer. Several sources corroborate this ...
CVE-2018-17862
The CVE describes a cross-site scripting (XSS) vulnerability in SAP J2EE Engine/7.01/Fiori. An attacker can inject arbitrary web script via the sys_jdbc parameter to the path /TestJDBC_Web/test2. Affected software is SAP J2EE Engine/7.01/Fiori; the issue is tied to improper handling/validation of...
PT-2021-8825 · Sap · Sap J2Ee Engine
Name of the Vulnerable Software and Affected Versions: SAP J2EE Engine/7.01/Portal/EPP version 7.01 Description: A cross-site scripting XSS issue allows remote attackers to inject arbitrary web script via the wsdlLib parameter to "/ctcprotocol/Protocol". This issue only affects products that are ...
PT-2021-8826 · Sap · Sap J2Ee Engine
Name of the Vulnerable Software and Affected Versions: SAP J2EE Engine/7.01/Fiori affected versions not specified Description: A cross-site scripting XSS issue allows remote attackers to inject arbitrary web script via the sys jdbc parameter to "/TestJDBC Web/test2". This issue only affects...
PT-2021-8827 · Sap · Sap J2Ee Engine
Name of the Vulnerable Software and Affected Versions: SAP J2EE Engine version 7.01 Description: A cross-site scripting XSS issue allows remote attackers to inject arbitrary web script via the wsdlPath parameter to "/ctcprotocol/Protocol". This issue only affects products that are no longer...
SAP J2EE Engine Cross-Site Scripting Vulnerability (CNVD-2019-07213)
SAP J2EE Engine is a set of runtime environments for J2EE applications. A cross-site scripting vulnerability exists in SAP J2EE Engine. An attacker can exploit the vulnerability to conduct a cross-site scripting attack...
SAP J2EE Engine Cross-Site Scripting Vulnerability
SAP J2EE Engine is a set of runtime environments for J2EE applications. A cross-site scripting vulnerability exists in SAP J2EE Engine due to a failure of SAP J2EE Engine/7.01/Fiori to effectively validate or filter user-entered data, resulting in cross-site scripting in the "TestJDBCWeb/test2"...