Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

18 matches found

Prion
Prionadded 2024/02/13 3:15 a.m.18 views

Cross site scripting

Print preview option in SAP CRM WebClient UI - versions S4FND 102, S4FND 103, S4FND 104, S4FND 105, S4FND 106, S4FND 107, S4FND 108, WEBCUIF 700, WEBCUIF 701, WEBCUIF 730, WEBCUIF 731, WEBCUIF 746, WEBCUIF 747, WEBCUIF 748, WEBCUIF 800, WEBCUIF 801, does not sufficiently encode user-controlled...

4.9CVSS6.5AI score0.00323EPSS
Exploits0References2
Prion
Prionadded 2024/02/13 3:15 a.m.15 views

Cross site scripting

SAP CRM WebClient UI - version S4FND 102, S4FND 103, S4FND 104, S4FND 105, S4FND 106, WEBCUIF 701, WEBCUIF 731, WEBCUIF 746, WEBCUIF 747, WEBCUIF 748, WEBCUIF 800, WEBCUIF 801, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability. An attacker wi...

3.5CVSS6.2AI score0.00329EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/02/13 2:42 a.m.26 views

CVE-2024-24742 Cross-Site Scripting (XSS) vulnerability in SAP CRM (WebClient UI)

SAP CRM WebClient UI - version S4FND 102, S4FND 103, S4FND 104, S4FND 105, S4FND 106, WEBCUIF 701, WEBCUIF 731, WEBCUIF 746, WEBCUIF 747, WEBCUIF 748, WEBCUIF 800, WEBCUIF 801, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability. An attacker wi...

4.1CVSS6.1AI score0.00329EPSS
Exploits0References2
CVE
CVEadded 2024/02/13 2:42 a.m.53 views

CVE-2024-24742

SAP CRM WebClient UI (versions S4FND 102–106; WEBCUIF 701–801) contains an XSS vulnerability due to insufficient encoding of user-controlled inputs. The issue affects the integrity of application data with low-privilege exploitation and has no impact on confidentiality or availability as describe...

4.1CVSS4.3AI score0.00329EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2024/02/13 2:42 a.m.23 views

CVE-2024-24742 Cross-Site Scripting (XSS) vulnerability in SAP CRM (WebClient UI)

SAP CRM WebClient UI - version S4FND 102, S4FND 103, S4FND 104, S4FND 105, S4FND 106, WEBCUIF 701, WEBCUIF 731, WEBCUIF 746, WEBCUIF 747, WEBCUIF 748, WEBCUIF 800, WEBCUIF 801, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability. An attacker wi...

4.1CVSS4.5AI score0.00329EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/02/13 2:29 a.m.19 views

CVE-2024-22130 Cross-Site Scripting (XSS) vulnerability in SAP CRM WebClient UI

Print preview option in SAP CRM WebClient UI - versions S4FND 102, S4FND 103, S4FND 104, S4FND 105, S4FND 106, S4FND 107, S4FND 108, WEBCUIF 700, WEBCUIF 701, WEBCUIF 730, WEBCUIF 731, WEBCUIF 746, WEBCUIF 747, WEBCUIF 748, WEBCUIF 800, WEBCUIF 801, does not sufficiently encode user-controlled...

7.6CVSS7.2AI score0.00323EPSS
Exploits0References2
NVD
NVDadded 2023/05/09 2:15 a.m.19 views

CVE-2023-30742

SAP CRM WebClient UI - versions S4FND 102, S4FND 103, S4FND 104, S4FND 105, S4FND 106, S4FND 107, WEBCUIF 700, WEBCUIF 701, WEBCUIF 731, WEBCUIF 746, WEBCUIF 747, WEBCUIF 748, WEBCUIF 800, WEBCUIF 801, does not sufficiently encode user-controlled inputs, resulting in a stored Cross-Site Scripting...

6.1CVSS6AI score0.00438EPSS
Exploits0References2
CVE
CVEadded 2023/05/09 12:57 a.m.50 views

CVE-2023-29188

The CVE-2023-29188 issue affects SAP CRM WebClient UI and related components: SAPSCORE 129, S4FND 102–107, WEBCUIF 701–801. The vulnerability is a Cross-Site Scripting (XSS) flaw caused by insufficient encoding of user-controlled inputs. Successful exploitation could allow a user with normal acce...

5.4CVSS5.3AI score0.00366EPSS
Exploits0References2Affected Software3
Positive Technologies
Positive Technologiesadded 2023/05/09 12:0 a.m.3 views

PT-2023-2940 · Sap · Sap Crm Webclient Ui

Name of the Vulnerable Software and Affected Versions: SAP CRM WebClient UI versions SAPSCORE 129, S4FND 102 through S4FND 107, WEBCUIF 701 through WEBCUIF 801 Description: The SAP CRM WebClient UI does not sufficiently encode user-controlled inputs, resulting in a Cross-Site Scripting XSS issue...

5.5CVSS5.2AI score0.00366EPSS
Exploits0References5
NVD
NVDadded 2023/02/14 4:15 a.m.18 views

CVE-2023-24525

SAP CRM WebClient UI - versions WEBCUIF 748, 800, 801, S4FND 102, 103, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability. On successful exploitation an authenticated attacker can cause limited impact on confidentiality of the application...

5.4CVSS4.6AI score0.00345EPSS
Exploits0References2
Prion
Prionadded 2023/02/14 4:15 a.m.19 views

Cross site scripting

SAP CRM WebClient UI - versions WEBCUIF 748, 800, 801, S4FND 102, 103, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability. On successful exploitation an authenticated attacker can cause limited impact on confidentiality of the application...

4.9CVSS5.2AI score0.00345EPSS
Exploits0References2Affected Software2
Prion
Prionadded 2019/01/08 8:29 p.m.13 views

Cross site scripting

SAP CRM WebClient UI fixed in SAPSCORE 1.12; S4FND 1.02; WEBCUIF 7.31, 7.46, 7.47, 7.48, 8.0, 8.01 does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability...

3.5CVSS5.3AI score0.00758EPSS
Exploits0References3Affected Software3
Prion
Prionadded 2019/01/08 8:29 p.m.26 views

Cross site scripting

SAP CRM WebClient UI fixed in SAPSCORE 1.12; S4FND 1.02; WEBCUIF 7.31, 7.46, 7.47, 7.48, 8.0, 8.01 does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability...

3.5CVSS5.3AI score0.00758EPSS
Exploits0References3Affected Software3
NVD
NVDadded 2019/01/08 8:29 p.m.26 views

CVE-2019-0245

SAP CRM WebClient UI fixed in SAPSCORE 1.12; S4FND 1.02; WEBCUIF 7.31, 7.46, 7.47, 7.48, 8.0, 8.01 does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability...

5.4CVSS5.3AI score0.00758EPSS
Exploits0References3
NVD
NVDadded 2019/01/08 8:29 p.m.22 views

CVE-2019-0244

SAP CRM WebClient UI fixed in SAPSCORE 1.12; S4FND 1.02; WEBCUIF 7.31, 7.46, 7.47, 7.48, 8.0, 8.01 does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability...

5.4CVSS5.3AI score0.00758EPSS
Exploits0References3
Cvelist
Cvelistadded 2019/01/08 8:0 p.m.27 views

CVE-2019-0244

SAP CRM WebClient UI fixed in SAPSCORE 1.12; S4FND 1.02; WEBCUIF 7.31, 7.46, 7.47, 7.48, 8.0, 8.01 does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability...

5.3AI score0.00758EPSS
Exploits0References3
CVE
CVEadded 2019/01/08 8:0 p.m.52 views

CVE-2019-0245

SAP CRM WebClient UI is affected by a Cross-Site Scripting (XSS) vulnerability due to insufficient encoding of user-controlled inputs. The flaw affects SAPSCORE 1.12; S4FND 1.02; WEBCUIF components 7.31, 7.46, 7.47, 7.48, 8.0, and 8.01. The root cause is improper input encoding in the web client ...

5.4CVSS5.3AI score0.00758EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2019/01/08 8:0 p.m.52 views

CVE-2019-0244

CVE-2019-0244 affects SAP CRM WebClient UI components (SAPSCORE, S4FND, WEBCUIF). The vulnerability arises from insufficient encoding of user-controlled inputs, enabling Cross-Site Scripting (XSS). Affected product areas: SAP CRM WebClient UI; fixed in SAPSCORE 1.12; S4FND 1.02; WEBCUIF 7.31, 7.4...

5.4CVSS5.3AI score0.00758EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder