Lucene search
K

5 matches found

OSV
OSV
added 2023/12/12 2:15 a.m.2 views

CVE-2023-49577

The SAP HCM SMART PAYE solution - versions S4HCMCIE 100, SAPHRCIE 600, SAPHRCIE 604, SAPHRCIE 608, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability. After successful exploitation, an attacker can cause limited impact on confidentiality and...

6.1CVSS5.8AI score0.0041EPSS
Exploits0References2
NVD
NVD
added 2023/12/12 2:15 a.m.9 views

CVE-2023-49577

The SAP HCM SMART PAYE solution - versions S4HCMCIE 100, SAPHRCIE 600, SAPHRCIE 604, SAPHRCIE 608, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability. After successful exploitation, an attacker can cause limited impact on confidentiality and...

6.1CVSS0.0041EPSS
Exploits0References2
Prion
Prion
added 2023/12/12 2:15 a.m.30 views

Cross site scripting

The SAP HCM SMART PAYE solution - versions S4HCMCIE 100, SAPHRCIE 600, SAPHRCIE 604, SAPHRCIE 608, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability. After successful exploitation, an attacker can cause limited impact on confidentiality and...

5.8CVSS6.2AI score0.0041EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/12/12 1:4 a.m.22 views

CVE-2023-49577 Cross-Site Scripting (XSS) vulnerability in the SAP HCM (SMART PAYE solution)

The SAP HCM SMART PAYE solution - versions S4HCMCIE 100, SAPHRCIE 600, SAPHRCIE 604, SAPHRCIE 608, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability. After successful exploitation, an attacker can cause limited impact on confidentiality and...

6.1CVSS6.2AI score0.0041EPSS
Exploits0References2
CVE
CVE
added 2023/12/12 1:4 a.m.43 views

CVE-2023-49577

CVE-2023-49577 affects SAP HCM (SMART PAYE solution) versions S4HCMCIE 100, SAP_HRCIE 600, 604, 608. Root cause is insufficient encoding of user-controlled inputs, enabling cross-site scripting (XSS). Impact is limited to confidentiality and integrity of the application; no availability impact. E...

6.1CVSS6AI score0.0041EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder