VYPR

User Admin

by SAP

CVEs (1)

  • CVE-2024-22126MedFeb 13, 2024
    risk 0.40cvss 6.1epss 0.01

    The User Admin application of SAP NetWeaver AS for Java - version 7.50, insufficiently validates and improperly encodes the incoming URL parameters before including them into the redirect URL. This results in Cross-Site Scripting (XSS) vulnerability, leading to a high impact on…