4 matches found
CVE-2021-27600
SAP Manufacturing Execution System Rules, versions - 15.1, 15.2, 15.3, 15.4, allows an authorized attacker to embed malicious code into HTTP parameter and send it to the server because SAP Manufacturing Execution System Rules tab does not sufficiently encode some parameters, resulting in Stored...
Cross site scripting
SAP Manufacturing Execution System Rules, versions - 15.1, 15.2, 15.3, 15.4, allows an authorized attacker to embed malicious code into HTTP parameter and send it to the server because SAP Manufacturing Execution System Rules tab does not sufficiently encode some parameters, resulting in Stored...
CVE-2021-27600
SAP Manufacturing Execution System Rules, versions - 15.1, 15.2, 15.3, 15.4, allows an authorized attacker to embed malicious code into HTTP parameter and send it to the server because SAP Manufacturing Execution System Rules tab does not sufficiently encode some parameters, resulting in Stored...
CVE-2021-27600
SAP Manufacturing Execution (System Rules) versions 15.1–15.4 are affected by a Stored XSS vulnerability caused by insufficient encoding of certain HTTP parameters in the System Rules tab. An authorized attacker could embed malicious code into HTTP parameters and have it processed by the server, ...