2 matches found
CVE-2023-33985 Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Enterprise Portal
SAP NetWeaver Enterprise Portal - version 7.50, does not sufficiently encode user-controlled inputs over the network, resulting in reflected Cross-Site Scripting XSS vulnerability, therefore changing the scope of the attack. On successful exploitation, an attacker can view or modify information...
CVE-2023-33985
CVE-2023-33985 affects SAP NetWeaver Enterprise Portal 7.50. The vulnerability is a reflected XSS caused by insufficient encoding of user-controlled inputs over the network, leading to a limited impact on confidentiality and integrity. Connected sources corroborate the affected product/version an...