CVE-2019-0254
published 2019-02-15CVE-2019-0254: SAP Disclosure Management (before version 10.1 Stack 1301) does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS)…
medium5.4CVSS 3.0
AVNACLPRLUIRSCCLILAN
SAP Disclosure Management (before version 10.1 Stack 1301) does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap | disclosure_management | < 10.1 | 10.1 |
| sap_se | sap_disclosure_management | < 10.1 Stack 1301 | 10.1 Stack 1301 |