VYPR
Unrated severityNVD Advisory· Published Aug 9, 2021· Updated Aug 5, 2024

CVE-2018-17862

CVE-2018-17862

Description

A cross-site scripting (XSS) vulnerability in SAP J2EE Engine/7.01/Fiori allows remote attackers to inject arbitrary web script via the sys_jdbc parameter to /TestJDBC_Web/test2. NOTE: This vulnerability only affects products that are no longer supported by the maintainer

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.