Total vulnerabilities in the database
Custom CSS support option in SAP CRM WebClient UI does not sufficiently encode user-controlled inputs resulting in Cross-Site Scripting vulnerability. On successful exploitation an attacker can cause limited impact on confidentiality and integrity of the application.
Software | From | Fixed in |
---|---|---|
sap / customer_relationship_management_webclient_ui | 731 | 731.x |
sap / customer_relationship_management_webclient_ui | 746 | 746.x |
sap / customer_relationship_management_webclient_ui | 747 | 747.x |
sap / customer_relationship_management_webclient_ui | 748 | 748.x |
sap / customer_relationship_management_webclient_ui | 800 | 800.x |
sap / customer_relationship_management_webclient_ui | 801 | 801.x |
sap / customer_relationship_management_s4fnd | 103 | 103.x |
sap / customer_relationship_management_s4fnd | 104 | 104.x |
sap / customer_relationship_management_s4fnd | 105 | 105.x |
sap / customer_relationship_management_webclient_ui | 701 | 701.x |
sap / customer_relationship_management_s4fnd | 102 | 102.x |
sap / customer_relationship_management_s4fnd | 106 | 106.x |
sap / customer_relationship_management_s4fnd | 107 | 107.x |
sap / customer_relationship_management_s4fnd | 108 | 108.x |