CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

Positive Technologies•added 2024/02/12 12:0 a.m.•4 views

PT-2024-3898 · Sap · Sap Crm Webclient Ui

Name of the Vulnerable Software and Affected Versions: SAP CRM WebClient UI versions S4FND 102 through S4FND 106 SAP CRM WebClient UI versions WEBCUIF 701 through WEBCUIF 801 Description: The SAP CRM WebClient UI does not sufficiently encode user-controlled inputs, resulting in a Cross-Site...

4.1CVSS5.8AI score0.00329EPSS

Exploits0References7

Positive Technologies•added 2023/05/09 12:0 a.m.•4 views

PT-2023-2940 · Sap · Sap Crm Webclient Ui

Name of the Vulnerable Software and Affected Versions: SAP CRM WebClient UI versions SAPSCORE 129, S4FND 102 through S4FND 107, WEBCUIF 701 through WEBCUIF 801 Description: The SAP CRM WebClient UI does not sufficiently encode user-controlled inputs, resulting in a Cross-Site Scripting XSS issue...

5.5CVSS5.2AI score0.00366EPSS

Exploits0References5

Prion•added 2023/02/14 4:15 a.m.•19 views

Cross site scripting

SAP CRM WebClient UI - versions WEBCUIF 748, 800, 801, S4FND 102, 103, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability. On successful exploitation an authenticated attacker can cause limited impact on confidentiality of the application...

4.9CVSS5.2AI score0.00345EPSS

Exploits0References2Affected Software2

Prion•added 2020/05/12 6:15 p.m.•18 views

Sql injection

The use of an admin backend report within SAP Master Data Governance, versions - S4CORE 101, S4FND 102, 103, 104, SAPBSFND 748; allows an attacker to execute crafted database queries, exposing the backend database, leading to SQL Injection...

6.5CVSS8.8AI score0.00981EPSS

Exploits0References2Affected Software3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by