CVE-2006-5114

SAP ITS exposed vulnerability: Cross-site scripting in wgate.dll (wgate) affecting SAP Internet Transaction Server versions 6.1 and 6.2. Attacker can inject arbitrary script via the ~urlmime or ~command parameters. This CVE (CVE-2006-5114) shares vectors with CVE-2003-0749 but is a separate entry...