1 results (0.001 seconds)
CVSS: 5.4EPSS: 0%CPEs: 5EXPL: 0
CVSS: 5.4EPSS: 0%CPEs: 5EXPL: 0CVE-2018-2486
https://notcve.org/view.php?id=CVE-2018-2486
11 Dec 2018 — SAP Marketing (UICUAN (1.20, 1.30, 1.40), SAPSCORE (1.13, 1.14)) does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability. SAP Marketing (UICUAN (1.20, 1.30, 1.40), SAPSCORE (1.13, 1.14)) no cifra lo suficiente las entradas controladas por el usuario, lo que resulta en una vulnerabilidad de Cross-Site Scripting (XSS). • http://www.securityfocus.com/bid/106171 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •