| CVE编号 | CVE-2025-27431 |
|---|---|
| 发布日期 | 2025-03-11T00:37:35.111Z |
| 更新日期 | 2025-03-11T02:06:21.293Z |
| 状态 | PUBLISHED |
| 受影响的供应商 | SAP_SE |
| 受影响的产品 | SAP NetWeaver Application Server Java |
| 描述 | User management functionality in SAP NetWeaver Application Server Java is vulnerable to Stored Cross-Site Scripting (XSS). This could enable an attacker to inject malicious payload that gets stored and executed when a user accesses the functionality, hence leading to information disclosure or unauthorized data modifications within the scope of victim�s browser. There is no impact on availability. |
参考链接:
