4 matches found
SAP Fiori Launchpad Cross Site Scripting
Onapsis Security Advisory 2022-0005: Cross-Site Scripting XSS vulnerability in SAP Fiori launchpad Impact on Business Impact depends on the victim's privileges. In most cases, a successful attack allows an attacker to hijack a session, or force the victim to perform undesired requests in the SAP...
CVE-2022-26101
Fiori launchpad - versions 754, 755, 756, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability...
CVE-2022-26101
CVE-2022-26101 affects SAP Fiori launchpad, specifically versions 754–756, where insufficient encoding of user-controlled inputs leads to a Cross-Site Scripting (XSS) vulnerability. The issue is tied to the launchpad’s handling of input data (root cause: inadequate encoding), enabling script exec...
CVE-2022-26101
Fiori launchpad - versions 754, 755, 756, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability...