2 matches found
CVE-2025-6434
The exception page for the HTTPS-Only feature, displayed when a website is opened via HTTP, lacked an anti-clickjacking delay, potentially allowing an attacker to trick a user into granting an exception and loading a webpage over HTTP. This vulnerability affects Firefox 140 and Thunderbird 140...
The vulnerability of the SAP Enterprise Portal web portal of the SAP NetWeaver integration platform allows a hacker to perform cross-site scripting attacks.
The vulnerability of the SAP Enterprise Portal, a component of the SAP NetWeaver integration platform, is related to the lack of protective measures for the web page structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...