10 matches found
CVE-2024-34685
Due to weak encoding of user-controlled input in SAP NetWeaver Knowledge Management XMLEditor which allows malicious scripts can be executed in the application, potentially leading to a Cross-Site Scripting XSS vulnerability. This has no impact on the availability of the application but it has a...
EUVD-2024-34984
Malicious code in bioql PyPI...
SAP NetWeaver Cross-Site Scripting Vulnerability (CNVD-2024-35654)
SAP NetWeaver is the German SAP SAP company's set of service-oriented integrated application platform. The platform mainly for SAP applications to provide development and runtime environment. A cross-site scripting vulnerability exists in SAP NetWeaver Knowledge Management XMLEditor, which stems...
CVE-2024-34685
Due to weak encoding of user-controlled input in SAP NetWeaver Knowledge Management XMLEditor which allows malicious scripts can be executed in the application, potentially leading to a Cross-Site Scripting XSS vulnerability. This has no impact on the availability of the application but it has a...
CVE-2024-34685 [CVE-2024-34685] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Knowledge Management XMLEditor
Due to weak encoding of user-controlled input in SAP NetWeaver Knowledge Management XMLEditor which allows malicious scripts can be executed in the application, potentially leading to a Cross-Site Scripting XSS vulnerability. This has no impact on the availability of the application but it has a...
CVE-2024-34685
The CVE-2024-34685 entry concerns SAP NetWeaver Knowledge Management XMLEditor. Affected component: SAP NetWeaver Knowledge Management XMLEditor (XMLEditor) in SAP NetWeaver. Description: weak encoding of user-controlled input enables execution of malicious scripts, i.e., a Cross-Site Scripting (...
SAP NetWeaver 跨站脚本漏洞
SAP NetWeaver is the German SAP SAP company's set of service-oriented integrated application platform. The platform mainly for SAP applications to provide development and runtime environment. A cross-site scripting vulnerability exists in SAP NetWeaver Knowledge Management XMLEditor, which stems...
PT-2024-26105 · Sap · Sap Netweaver Knowledge Management Xmleditor
Name of the Vulnerable Software and Affected Versions: SAP NetWeaver Knowledge Management XMLEditor affected versions not specified Description: The issue is due to weak encoding of user-controlled input in the SAP NetWeaver Knowledge Management XMLEditor, allowing malicious scripts to be execute...
Dream Flash website management system FCMS v6. 5 vulnerability-vulnerability warning-the black bar safety net
Author:roker xmlEditor/adminadd. asp !-- include file="Conn. ASP" - !-- include file="inc/md5. asp" - !-- include file="chkuser. asp" - % if request. cookies"key""super" then response. Write"script language=javascriptalert'you are not authorized to modify admin!'; this. history. go-1;/script"...
Dream Flash website management system FCMS v5. 9 newest vulnerabilities 0day-vulnerability warning-the black bar safety net
Dream Flash website management system FCMS v5. 9 the latest vulnerability 0day The database address: xmlEditor/database/@@@datas.mdb Background xmleditor/login. asp admin/admin Message database: guestbook/db/sywl. asp the cookie injected into the drain Vulnerability file: xml/text. asp...