Vulnerabilities > SAP > Customer Relationship Management S4Crm

DATE CVE VULNERABILITY TITLE RISK
2019-10-08 CVE-2019-0368 Cross-site Scripting vulnerability in SAP products
SAP Customer Relationship Management (Email Management), versions: S4CRM before 1.0 and 2.0, BBPCRM before 7.0, 7.01, 7.02, 7.12, 7.13 and 7.14, does not sufficiently encode user-controlled inputs within the mail client resulting in Cross-Site Scripting vulnerability.
network
low complexity
sap CWE-79
5.4