A cross-site scripting (XSS) vulnerability in SAP J2EE Engine/7.01/Portal/EPP allows remote malicious users to inject arbitrary web script via the wsdlLib parameter to /ctcprotocol/Protocol. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sap j2ee engine 7.01 |