Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:40 p.m.5 views

CVE-2020-6200

The SAP Commerce SmartEdit Extension, versions- 6.6, 6.7, 1808, 1811, is vulnerable to client-side angularjs template injection, a variant of Cross-Site-Scripting XSS that exploits the templating facilities of the angular framework...

5.4CVSS6.5AI score0.00536EPSS
Exploits0References1
CNVD
CNVD
added 2020/03/19 12:0 a.m.1 views

SAP Commerce Cross-Site Scripting Vulnerability (CNVD-2020-21059)

SAP Commerce is a cloud-based e-commerce platform from SAP, a German company. The product supports sales management, marketing management, order management and operations management , etc. SmartEdit Extension is one of the smart editor extension program . A cross-site scripting vulnerability exis...

5.4CVSS6.3AI score0.00536EPSS
Exploits0References1
NVD
NVD
added 2020/03/10 9:15 p.m.28 views

CVE-2020-6200

The SAP Commerce SmartEdit Extension, versions- 6.6, 6.7, 1808, 1811, is vulnerable to client-side angularjs template injection, a variant of Cross-Site-Scripting XSS that exploits the templating facilities of the angular framework...

5.4CVSS5.4AI score0.00536EPSS
Exploits0References2
OSV
OSV
added 2020/03/10 9:15 p.m.3 views

CVE-2020-6200

The SAP Commerce SmartEdit Extension, versions- 6.6, 6.7, 1808, 1811, is vulnerable to client-side angularjs template injection, a variant of Cross-Site-Scripting XSS that exploits the templating facilities of the angular framework...

5.4CVSS6.3AI score0.00536EPSS
Exploits0References2
Prion
Prion
added 2020/03/10 9:15 p.m.23 views

Cross site scripting

The SAP Commerce SmartEdit Extension, versions- 6.6, 6.7, 1808, 1811, is vulnerable to client-side angularjs template injection, a variant of Cross-Site-Scripting XSS that exploits the templating facilities of the angular framework...

3.5CVSS5.4AI score0.00536EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/03/10 8:18 p.m.31 views

CVE-2020-6200

The SAP Commerce SmartEdit Extension, versions- 6.6, 6.7, 1808, 1811, is vulnerable to client-side angularjs template injection, a variant of Cross-Site-Scripting XSS that exploits the templating facilities of the angular framework...

5.4CVSS5.4AI score0.00536EPSS
Exploits0References2
CVE
CVE
added 2020/03/10 8:18 p.m.92 views

CVE-2020-6200

SAP Commerce SmartEdit Extension (versions 6.6, 6.7, 1808, 1811) is affected by a client-side AngularJS template injection vulnerability (a type of XSS) in Angular templating facilities. Root cause: improper handling of template data in the client, per the CVE-2020-6200 descriptions. Impact is XS...

5.4CVSS5.4AI score0.00536EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder