Cross-site scripting (XSS) vulnerability in the DataArchivingService servlet in SAP NetWeaver Portal 7.4 allows remote malicious users to inject arbitrary web script or HTML via the responsecode parameter to shp/shp_result.jsp, aka SAP Security Note 2308535.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sap netweaver portal 7.4 |