VYPR
Unrated severityNVD Advisory· Published May 9, 2023· Updated Jan 28, 2025

Cross-Site Scripting (XSS) vulnerability in SAP Business Planning and Consolidation

CVE-2023-31407

Description

SAP Business Planning and Consolidation - versions 740, 750, allows an authorized attacker to upload a malicious file, resulting in Cross-Site Scripting vulnerability. After successful exploitation, an attacker can cause limited impact on confidentiality and integrity of the application.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.