2 matches found
CVE-2018-2410
SAP Business One, 9.2, 9.3, browser access does not sufficiently encode user controlled inputs, which results in a Cross-Site Scripting XSS vulnerability...
CVE-2018-2410
CVE-2018-2410 affects SAP Business One (versions 9.2 and 9.3) where the browser interface does not sufficiently encode user-supplied input, enabling a Cross-Site Scripting (XSS) vulnerability. The issue is rooted in input handling in the web-facing component and can lead to arbitrary script execu...