NuytsTech Security

CVE-2015-6663

by ·

Cross-site scripting (XSS) vulnerability in the Client form in the Device Inspector page in SAP Afaria 7 allows remote attackers to inject arbitrary web script or HTML via crafted client name data, aka SAP Security Note 2152669.

Date published : 2015-08-24

http://www.securityfocus.com/archive/1/536956/100/0/threaded

http://seclists.org/fulldisclosure/2015/Nov/95

Tags: