CVE-2018-2435
published 2018-07-10CVE-2018-2435: SAP NetWeaver Enterprise Portal from 7.0 to 7.02, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not sufficiently encode user controlled inputs, resulting in…
medium6.1CVSS 3.0
AVNACLPRNUIRSCCLILAN
SAP NetWeaver Enterprise Portal from 7.0 to 7.02, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not sufficiently encode user controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap | netweaver_enterprise_portal | — | — |
| sap | netweaver_enterprise_portal | — | — |
| sap | netweaver_enterprise_portal | — | — |
| sap | netweaver_enterprise_portal | — | — |
| sap | netweaver_enterprise_portal | — | — |
| sap | netweaver_enterprise_portal | — | — |
| sap | netweaver_enterprise_portal | 7.0 – 7.02 | — |
| sap | sap_netweaver_enterprise_portal | — | — |
| sap | sap_netweaver_enterprise_portal | — | — |
| sap | sap_netweaver_enterprise_portal | — | — |
| sap | sap_netweaver_enterprise_portal | — | — |
| sap | sap_netweaver_enterprise_portal | — | — |
| sap | sap_netweaver_enterprise_portal | — | — |
| sap | sap_netweaver_enterprise_portal | — | — |