Total vulnerabilities in the database
HTTP response splitting vulnerability in frameset.htm in SAP Web Application Server (WAS) 6.10 through 7.00 allows remote attackers to inject arbitrary HTML headers via the sap-exiturl parameter.
| Software | From | Fixed in |
|---|---|---|
| sap / sap_web_application_server | 7.0 | 7.0.x |
| sap / sap_web_application_server | 6.10 | 6.10.x |
| sap / sap_web_application_server | 6.20 | 6.20.x |
| sap / sap_web_application_server | 6.40 | 6.40.x |