SAP Customer Relationship Management (Email Management), versions: S4CRM prior to 1.0 and 2.0, BBPCRM prior to 7.0, 7.01, 7.02, 7.12, 7.13 and 7.14, does not sufficiently encode user-controlled inputs within the mail client resulting in Cross-Site Scripting vulnerability.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sap customer relationship management s4crm 1.0 |
||
sap customer relationship management s4crm 2.0 |
||
sap customer relationship management bbpcrm 7.0 |
||
sap customer relationship management bbpcrm 7.01 |
||
sap customer relationship management bbpcrm 7.02 |
||
sap customer relationship management bbpcrm 7.13 |
||
sap customer relationship management bbpcrm 7.12 |
||
sap customer relationship management bbpcrm 7.14 |