SAP cFolders Cross Site Scripting And HTML Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/34658/info SAP cFolders is prone to multiple cross-site scripting and HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code could run in the...

SAP TesContainerAdmin service - Stored XSS

Application: SAP Cfolders included in: SAP SRM, SAP ECC, SAP Knowledge Management and SAP NetWeaver cRooms Vendor URL: Bugs: Multiple Stored XSS Risk: High Exploits: YES Reported: 13.05.2011 Vendor response: 14.05.2011 Date of Public Advisory: 20.01.2012 Reference: SAP Security Note 1591749...

SAP Cfolders Multiple Linked XSS Vulnerabilities

Application: SAP Cfolders SAP SRM, SAP ECC, SAP Knowledge Management and SAP NetWeaver cRooms collaboration rooms Vendor URL: Bugs: Multiple Liked XSS Risk: High Exploits: YES Reported: 12.01.2009 Vendor response: 13.01.2009 patched: 21.01.2009 Date of Public Advisory: 21.04.2009 Reference: SAP...

Five 'must-secure' Web app vulnerabilities

Security holes in the Apache Geronimo Application Server and SAP cFolders headline a list of five serious Web app vulnerabilities that demand immediate attention. According to Mark Painter from the HP Security Laboratory, the Geronimo flaws expose users to a variety of attack vectors that could...

SAP Cfolders Multiple Linked XSS Vulnerabilities

Digital Security Research Group DSecRG Advisory DSECRG-09-021 Original advisory: http://dsecrg.com/pages/vul/show.php?id=121 Application: SAP Cfolders SAP SRM, SAP ECC, SAP Knowledge Management and SAP NetWeaver cRooms collaboration rooms Vendor URL: http://SAP.com Bugs: Multiple Liked XSS Risk:...

SAP Cfolders Multiple Stored XSS Vulnerabilies

Digital Security Research Group DSecRG Advisory DSECRG-09-014 Original advisory: http://dsecrg.com/pages/vul/show.php?id=114 Application: SAP Cfolders included in: SAP SRM, SAP ECC, SAP Knowledge Management and SAP NetWeaver cRooms Vendor URL: http://SAP.com Bugs: Multiple Stored XSS Risk: Hight...

SAP Cfolders Stored Cross Site Scripting

Digital Security Research Group DSecRG Advisory DSECRG-09-014 Original advisory: http://dsecrg.com/pages/vul/show.php?id=114 Application: SAP Cfolders included in: SAP SRM, SAP ECC, SAP Knowledge Management and SAP NetWeaver cRooms Vendor URL: http://SAP.com Bugs: Multiple Stored XSS Risk: Hight...

SAP Cfolders Linked Cross Site Scripting

Digital Security Research Group DSecRG Advisory DSECRG-09-021 Original advisory: http://dsecrg.com/pages/vul/show.php?id=121 Application: SAP Cfolders SAP SRM, SAP ECC, SAP Knowledge Management and SAP NetWeaver cRooms collaboration rooms Vendor URL: http://SAP.com Bugs: Multiple Liked XSS Risk:...

SAP cFolders - Cross-Site Scripting / HTML Injection

source: https://www.securityfocus.com/bid/34658/info SAP cFolders is prone to multiple cross-site scripting and HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code could run in the context of the affected site,...

SAP cFolders - Cross-Site Scripting HTML Injection

SAP cFolders - Cross-Site Scripting HTML Injection source: https://www.securityfocus.com/bid/34658/info SAP cFolders is prone to multiple cross-site scripting and HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code...

SAP Cfolders Multiple Stored XSS Vulnerabilies

Application: SAP Cfolders included in: SAP SRM, SAP ECC, SAP Knowledge Management and SAP NetWeaver cRooms Vendor URL: Bugs: Multiple Stored XSS Risk: High Exploits: YES Reported: 04.12.2008 Vendor response: 05.12.2008 Vulnerability patched: 15.12.2008 Date of Public Advisory: 21.04.2009 Referenc...