CVE-2021-27601
CVE-2021-27601 affects SAP NetWeaver AS Java (Applications based on HTMLB for Java). An authorized, basic-level attacker can store a malicious file on the server; when a victim opens that file, a Cross-Site Scripting (XSS) vulnerability can allow reading and modification of data. The root cause i...