Due to insufficient input validation, SAP Financial Consolidation - version 1010, allows an authenticated malicious user to inject malicious script when running a common query in the Web Administration Console. On successful exploitation, an attacker can view or modify information causing a limited impact on confidentiality, integrity and availability of the application.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sap financial consolidation 1010 |