CVE-2020-6213
published 2020-04-24CVE-2020-6213: SAP NetWeaver AS ABAP Business Server Pages Test Application SBSPEXT_PHTMLB, versions 700, 701, 702, 730, 731, 740, 750, 751, 752, 753, 754, is vulnerable to…
medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
SAP NetWeaver AS ABAP Business Server Pages Test Application SBSPEXT_PHTMLB, versions 700, 701, 702, 730, 731, 740, 750, 751, 752, 753, 754, is vulnerable to reflected Cross-Site Scripting (XSS) via different URL parameters as it does not sufficiently encode user controlled inputs.
Affected
22 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap_se | sap_netweaver_as_abap | < 700 | 700 |
| sap_se | sap_netweaver_as_abap | < 701 | 701 |
| sap_se | sap_netweaver_as_abap | < 702 | 702 |
| sap_se | sap_netweaver_as_abap | < 730 | 730 |
| sap_se | sap_netweaver_as_abap | < 731 | 731 |
| sap_se | sap_netweaver_as_abap | < 740 | 740 |
| sap_se | sap_netweaver_as_abap | < 750 | 750 |
| sap_se | sap_netweaver_as_abap | < 751 | 751 |
| sap_se | sap_netweaver_as_abap | < 752 | 752 |
| sap_se | sap_netweaver_as_abap | < 753 | 753 |
| sap_se | sap_netweaver_as_abap | < 754 | 754 |