VYPR

Web Dynpro for ABAP

by SAP

CVEs (3)

  • CVE-2008-2421May 23, 2008
    risk 0.03cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in the Web GUI in SAP Web Application Server (WAS) 7.0, Web Dynpro for ABAP (aka WD4A or WDA), and Web Dynpro for BSP allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the default URI under…

  • CVE-2021-21478Feb 9, 2021
    risk 0.00cvss epss 0.01

    SAP Web Dynpro ABAP allow an attacker to redirect users to a malicious site due to Reverse Tabnabbing vulnerabilities.

  • CVE-2020-6240May 12, 2020
    risk 0.00cvss epss 0.01

    SAP NetWeaver AS ABAP (Web Dynpro ABAP), versions (SAP_UI 750, 752, 753, 754 and SAP_BASIS 700, 710, 730, 731, 804) allows an unauthenticated attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service leading to Denial of Service