Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2025/03/13 3:49 a.m.8 views

CVE-2025-27434

Due to insufficient input validation, SAP Commerce Swagger UI allows an unauthenticated attacker to inject the malicious code from remote sources, which can be leveraged by an attacker to execute a cross-site scripting XSS attack. This could lead to a high impact on the confidentiality, integrity...

8.8CVSS6.1AI score0.00439EPSS
Exploits0References1
circl
circl
added 2025/03/11 1:41 a.m.5 views

CVE-2025-27434

creationtimestamp| type| source ---|---|--- 2025-03-11 01:41:16+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7081 2025-03-11 01:48:20+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114141278894705682 2025-03-11 02:00:59+00:00| seen|...

8.8CVSS7.6AI score0.00439EPSS
Exploits0References5
vulnrichment
vulnrichment
added 2025/03/11 12:39 a.m.4 views

CVE-2025-27434 Cross-Site Scripting (XSS) vulnerability in SAP Commerce (Swagger UI)

Due to insufficient input validation, SAP Commerce Swagger UI allows an unauthenticated attacker to inject the malicious code from remote sources, which can be leveraged by an attacker to execute a cross-site scripting XSS attack. This could lead to a high impact on the confidentiality, integrity...

8.8CVSS6.4AI score0.00439EPSS
Exploits0References2
cvelist
cvelist
added 2025/03/11 12:39 a.m.17 views

CVE-2025-27434 Cross-Site Scripting (XSS) vulnerability in SAP Commerce (Swagger UI)

Due to insufficient input validation, SAP Commerce Swagger UI allows an unauthenticated attacker to inject the malicious code from remote sources, which can be leveraged by an attacker to execute a cross-site scripting XSS attack. This could lead to a high impact on the confidentiality, integrity...

8.8CVSS0.00439EPSS
Exploits0References2
Rows per page
Query Builder