Netweaver As Abap Business Server Pages Security Vulnerabilities and Issues — Netweaver As Abap Business Server Pages CVE List

Lucene search

SapNetweaver As Abap Business Server Pages

4 matches found

CVE•added 2020/04/24 11:15 p.m.•105 views

CVE-2020-6213

SAP NetWeaver AS ABAP Business Server Pages Test Application SBSPEXT_PHTMLB, versions 700, 701, 702, 730, 731, 740, 750, 751, 752, 753, 754, is vulnerable to reflected Cross-Site Scripting (XSS) via different URL parameters as it does not sufficiently encode user controlled inputs.

6.1CVSS5.9AI score0.00191EPSS

CVE•added 2020/04/14 8:15 p.m.•71 views

CVE-2020-6215

SAP NetWeaver AS ABAP Business Server Pages Test Application IT00, versions 700, 701, 702, 730, 731, 740, 750, 751, 752, 753, 754, allows an attacker to redirect users to a malicious site due to insufficient URL validation and steal credentials of the victim, leading to URL Redirection vulnerabilit...

6.1CVSS6.1AI score0.00402EPSS

Web

CVE•added 2020/04/14 8:15 p.m.•53 views

CVE-2020-6217

SAP NetWeaver AS ABAP Business Server Pages Test Application IT00, versions 700, 701, 702, 730, 731, 740, 750, 751, 752, 753, 754, does not sufficiently encode user-controlled inputs, resulting in reflected Cross-Site Scripting (XSS) vulnerability.

6.1CVSS5.9AI score0.00366EPSS

CVE•added 2020/04/14 7:15 p.m.•40 views

CVE-2020-6229

SAP NetWeaver AS ABAP (Business Server Pages application CRM_BSP_FRAME), versions 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 75A, 75B, 75C, 75D, 75E, does not sufficiently encode user controlled inputs, resulting in reflected Cross-Site Scripting (XSS) vulnerability.

6.1CVSS5.9AI score0.00243EPSS