Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8
CVE-2019-0308
- EPSS 0.22%
- Published 12.06.2019 15:29:00
- Last modified 21.11.2024 04:16:39
An authenticated attacker in SAP E-Commerce (Business-to-Consumer application), versions 7.3, 7.31, 7.32, 7.33, 7.54, can change the price of the product to zero and also checkout, by injecting an HTML code in the application that will be executed wh...
6.1
CVE-2019-0298
- EPSS 0.29%
- Published 14.05.2019 21:29:00
- Last modified 21.11.2024 04:16:38
SAP E-Commerce (Business-to-Consumer) application does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability. Fixed in the following components SAP-CRMJAV SAP-CRMWEB SAP-SHRWEB SAP-SHRJAV SAP-CRMAPP SAP...
1