Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
Производитель ПО
Наименование ПО
SAP Notes
(1668728-3)
SAP Support Packages
(SAPK-70108INSRMSRV, SAPK-70202INSRMSRV, SAPKIBKT20, SAPKIBKU06, SAPKIBKV12)
Описание
Within SRM attachment functionality some parameters are not sufficiently encoded, resulting in a reflected cross-site scripting issue. A reflected cross-site scripting attack can be used to non-permanently deface or modify displayed content from a web site.
Как исправить
Implement the attached correction or install the corresponding support package.
Ссылки