CVE-2024-45278

CVSS V2 None CVSS V3 None
Description
SAP Commerce Backoffice does not sufficiently encode user controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability. After successful exploitation, an attacker can cause limited impact on confidentiality and integrity of the application.
Overview
  • CVE ID
  • CVE-2024-45278
  • Assigner
  • sap
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-10-08T03:21:25.904Z
  • Last Modified Date
  • 2024-10-08T03:21:25.904Z
History
Created Old Value New Value Data Type Notes
2024-10-08 13:26:40 Added to TrackCVE