A cross-site scripting (XSS) vulnerability in SAP J2EE Engine 7.01 allows remote malicious users to inject arbitrary web script via the wsdlPath parameter to /ctcprotocol/Protocol. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sap j2ee engine 7.01 |