3 matches found
CVE-2018-17862
A cross-site scripting XSS vulnerability in SAP J2EE Engine/7.01/Fiori allows remote attackers to inject arbitrary web script via the sysjdbc parameter to /TestJDBCWeb/test2. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
PT-2021-8826 · Sap · Sap J2Ee Engine
Name of the Vulnerable Software and Affected Versions: SAP J2EE Engine/7.01/Fiori affected versions not specified Description: A cross-site scripting XSS issue allows remote attackers to inject arbitrary web script via the sys jdbc parameter to "/TestJDBC Web/test2". This issue only affects...
SAP J2EE Engine Cross-Site Scripting Vulnerability
SAP J2EE Engine is a set of runtime environments for J2EE applications. A cross-site scripting vulnerability exists in SAP J2EE Engine due to a failure of SAP J2EE Engine/7.01/Fiori to effectively validate or filter user-entered data, resulting in cross-site scripting in the "TestJDBCWeb/test2"...