SAP J2EE Engine Cross-Site Scripting Vulnerability
SAP J2EE Engine is a set of runtime environments for J2EE applications. A cross-site scripting vulnerability exists in SAP J2EE Engine because SAP J2EE Engine/7.01/Fiori fails to validate or filter user input data, resulting in cross-site scripting in the "ctcprotocol" protocol implementation,...