Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
Производитель ПО
Наименование ПО
SAP Notes
(1671106-3)
SAP Support Packages
(712, SAPKU70012, SAPKU70109, SAPKU70203)
Описание
Pages within the BSP do not sufficiently encode OUTPUT parameters, resulting in a cross site scripting issue. A cross site scripting attack can be used to non-permanently modify displayed content from a web site.
Как исправить
Please apply the mentioned support package or implement the correction in the note.
Ссылки