2 matches found
CVE-2012-1290
Cross-site scripting XSS vulnerability in b2b/auction/container.jsp in the Internet Sales crm.b2b module in SAP NetWeaver 7.0 allows remote attackers to inject arbitrary web script or HTML via the loadPage parameter...
CVE-2012-1290
The CVE-2012-1290 entry describes a Cross-site scripting (XSS) vulnerability in SAP NetWeaver 7.0, specifically in the Internet Sales (crm.b2b) module and the b2b/auction/container.jsp page. The issue is exploitable via the _loadPage parameter, allowing an attacker to inject arbitrary web script ...