Published: 24/04/2020 Updated: 05/05/2020

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Subscribe to Netweaver As Abap Business Server Pages

SAP NetWeaver AS ABAP Business Server Pages Test Application SBSPEXT_PHTMLB, versions 700, 701, 702, 730, 731, 740, 750, 751, 752, 753, 754, is vulnerable to reflected Cross-Site Scripting (XSS) via different URL parameters as it does not sufficiently encode user controlled inputs.

Vulnerable Product	Search on Vulmon	Subscribe to Product
sap netweaver as abap business server pages 700
sap netweaver as abap business server pages 701
sap netweaver as abap business server pages 702
sap netweaver as abap business server pages 730
sap netweaver as abap business server pages 731
sap netweaver as abap business server pages 740
sap netweaver as abap business server pages 750
sap netweaver as abap business server pages 751
sap netweaver as abap business server pages 752
sap netweaver as abap business server pages 753
sap netweaver as abap business server pages 754

CWE-79 https://launchpad.support.sap.com/#/notes/2872752 https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=544214202 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-6213

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect