CVE-2023-36920
CVE-2023-36920 affects SAP Enable Now components: WPB_MANAGER 1.0, WPB_MANAGER_CE 10, WPB_MANAGER_HANA 10, ENABLE_NOW_CONSUMP_DEL 1704. The issue is an unimplemented X-Frame-Options header, enabling an unauthenticated attacker to attempt clickjacking that could lead to disclosure or modification ...