Eval injection in test-net.xsjs in the Web-based Development Workbench in SAP HANA Developer Edition DB 1.00.091.00.1418659308 allows remote authenticated users to execute arbitrary XSJS code via unspecified vectors, aka SAP Security Note 2153892.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sap hana 1.00.091.00 |