10 matches found
CVE-2024-34685
Due to weak encoding of user-controlled input in SAP NetWeaver Knowledge Management XMLEditor which allows malicious scripts can be executed in the application, potentially leading to a Cross-Site Scripting XSS vulnerability. This has no impact on the availability of the application but it has a...
EUVD-2024-34984
Malicious code in bioql PyPI...
SAP NetWeaver Cross-Site Scripting Vulnerability (CNVD-2024-35654)
SAP NetWeaver is the German SAP SAP company's set of service-oriented integrated application platform. The platform mainly for SAP applications to provide development and runtime environment. A cross-site scripting vulnerability exists in SAP NetWeaver Knowledge Management XMLEditor, which stems...
CVE-2024-34685
Due to weak encoding of user-controlled input in SAP NetWeaver Knowledge Management XMLEditor which allows malicious scripts can be executed in the application, potentially leading to a Cross-Site Scripting XSS vulnerability. This has no impact on the availability of the application but it has a...
CVE-2024-34685
The CVE-2024-34685 entry concerns SAP NetWeaver Knowledge Management XMLEditor. Affected component: SAP NetWeaver Knowledge Management XMLEditor (XMLEditor) in SAP NetWeaver. Description: weak encoding of user-controlled input enables execution of malicious scripts, i.e., a Cross-Site Scripting (...
CVE-2024-34685 [CVE-2024-34685] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Knowledge Management XMLEditor
Due to weak encoding of user-controlled input in SAP NetWeaver Knowledge Management XMLEditor which allows malicious scripts can be executed in the application, potentially leading to a Cross-Site Scripting XSS vulnerability. This has no impact on the availability of the application but it has a...
SAP NetWeaver 跨站脚本漏洞
SAP NetWeaver is the German SAP SAP company's set of service-oriented integrated application platform. The platform mainly for SAP applications to provide development and runtime environment. A cross-site scripting vulnerability exists in SAP NetWeaver Knowledge Management XMLEditor, which stems...
PT-2024-26105 · Sap · Sap Netweaver Knowledge Management Xmleditor
Name of the Vulnerable Software and Affected Versions: SAP NetWeaver Knowledge Management XMLEditor affected versions not specified Description: The issue is due to weak encoding of user-controlled input in the SAP NetWeaver Knowledge Management XMLEditor, allowing malicious scripts to be execute...
Dream Flash website management system FCMS v6. 5 vulnerability-vulnerability warning-the black bar safety net
Author:roker xmlEditor/adminadd. asp !-- include file="Conn. ASP" - !-- include file="inc/md5. asp" - !-- include file="chkuser. asp" - % if request. cookies"key""super" then response. Write"script language=javascriptalert'you are not authorized to modify admin!'; this. history. go-1;/script"...
Dream Flash website management system FCMS v5. 9 newest vulnerabilities 0day-vulnerability warning-the black bar safety net
Dream Flash website management system FCMS v5. 9 the latest vulnerability 0day The database address: xmlEditor/database/@@@datas.mdb Background xmleditor/login. asp admin/admin Message database: guestbook/db/sywl. asp the cookie injected into the drain Vulnerability file: xml/text. asp...