SAP NetWeaver (Design Time Repository) - version 7.50, returns an unfavorable content type for some versioned files, which could allow an authorized malicious user to create a file with a malicious content and send a link to a victim in an email or instant message. Under certain circumstances, this could lead to Cross-Site Scripting vulnerability.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sap netweaver 7.50 |