SAP Financial Consolidation - version 1010, does not sufficiently encode user-controlled input which may allow an unauthenticated malicious user to inject a web script via a GET request. On successful exploitation, an attacker can view or modify information causing a limited impact on confidentiality and integrity of the application.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sap financial consolidation 1010 |