SAP Cfolders Linked Cross Site Scripting
Digital Security Research Group DSecRG Advisory DSECRG-09-021 Original advisory: http://dsecrg.com/pages/vul/show.php?id=121 Application: SAP Cfolders SAP SRM, SAP ECC, SAP Knowledge Management and SAP NetWeaver cRooms collaboration rooms Vendor URL: http://SAP.com Bugs: Multiple Liked XSS Risk:...