Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/04/10 7:46 a.m.8 views

CVE-2025-26653

SAP NetWeaver Application Server ABAP does not sufficiently encode user-controlled inputs, leading to Stored Cross-Site Scripting XSS vulnerability. This enables an attacker, without requiring any privileges, to inject malicious JavaScript into a website. When a user visits the compromised page,...

4.7CVSS5.8AI score0.00225EPSS
Exploits0References1
NVD
NVD
added 2025/04/08 8:15 a.m.8 views

CVE-2025-26653

SAP NetWeaver Application Server ABAP does not sufficiently encode user-controlled inputs, leading to Stored Cross-Site Scripting XSS vulnerability. This enables an attacker, without requiring any privileges, to inject malicious JavaScript into a website. When a user visits the compromised page,...

4.7CVSS0.00225EPSS
Exploits0References2
Circl
Circl
added 2025/04/08 7:46 a.m.12 views

CVE-2025-26653

creationtimestamp| type| source ---|---|--- 2025-04-08 07:46:38+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10872 2025-04-08 09:18:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmc5ecmaco2c 2025-04-08 11:29:20+00:00| seen| https://t.me/cvedetector/22431...

4.7CVSS4.8AI score0.00225EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/04/08 7:10 a.m.7 views

CVE-2025-26653 Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Application Server ABAP (applications based on SAP GUI for HTML)

SAP NetWeaver Application Server ABAP does not sufficiently encode user-controlled inputs, leading to Stored Cross-Site Scripting XSS vulnerability. This enables an attacker, without requiring any privileges, to inject malicious JavaScript into a website. When a user visits the compromised page,...

4.7CVSS5.9AI score0.00225EPSS
Exploits0References2
CVE
CVE
added 2025/04/08 7:10 a.m.55 views

CVE-2025-26653

SAP NetWeaver Application Server ABAP is affected by a Stored XSS due to insufficient encoding of user-controlled inputs. Affected component: SAP NetWeaver AS ABAP (applications based on SAP GUI for HTML). Impact: attacker can inject and execute malicious JavaScript in a victim’s browser, comprom...

4.7CVSS5.9AI score0.00225EPSS
Exploits0References2
Rows per page
Query Builder