In SAP Enable Now - versions WPB_MANAGER 1.0, WPB_MANAGER_CE 10, WPB_MANAGER_HANA 10, ENABLE_NOW_CONSUMP_DEL 1704, the X-FRAME-OPTIONS response header is not implemented, allowing an unauthenticated malicious user to attempt clickjacking, which could result in disclosure or modification of information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sap enable now enable now consump del 1704 |
||
sap enable now wpb manager hana 10 |
||
sap enable now wpb manager ce 10 |
||
sap enable now wpb manager 1.0 |