VYPR

Application Interface

by SAP

CVEs (2)

  • CVE-2023-29112LowApr 11, 2023
    risk 0.24cvss 3.7epss 0.00

    The SAP Application Interface (Message Monitoring) - versions 600, 700, allows an authorized attacker to input links or headings with custom CSS classes into a comment. The comment will render links and custom CSS classes as HTML objects. After successful exploitations, an…

  • CVE-2023-29110LowApr 11, 2023
    risk 0.24cvss 3.7epss 0.00

    The SAP Application Interface (Message Dashboard) - versions AIF 703, AIFX 702, S4CORE 100, 101, SAP_BASIS 755, 756, SAP_ABA 75C, 75D, 75E, application allows the usage HTML tags. An authorized attacker can use some of the basic HTML codes such as heading, basic formatting and…