CVE-2018-2364
The CVE-2018-2364 entry affects SAP CRM WebClient UI versions 7.01, 7.31, 7.46, 7.47, 7.48, 8.00, 8.01 and S4FND 1.02. The root cause is insufficient validation/encoding of hidden fields, leading to Cross-Site Scripting (XSS). The connected documents confirm the existence of the vulnerability but...