Vulnerabilities

CVE-2020-26835

by Fred · 09/12/2020

SAP NetWeaver AS ABAP, versions – 740, 750, 751, 752, 753, 754 , does not sufficiently encode URL which allows an attacker to input malicious java script in the URL which could be executed in the browser resulting in Reflected Cross-Site Scripting (XSS) vulnerability.

Date published : 2020-12-09

https://launchpad.support.sap.com/#/notes/2996479

https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=564757079

Similar

Tags: Cybersecurity Alert