Vulnerabilities > SAP > Financial Consolidation > Low

DATE CVE VULNERABILITY TITLE RISK
2019-10-08 CVE-2019-0369 Cross-site Scripting vulnerability in SAP Financial Consolidation 10.0/10.1
SAP Financial Consolidation, before versions 10.0 and 10.1, does not sufficiently encode user-controlled inputs, which allows an attacker to execute scripts by uploading files containing malicious scripts, leading to reflected cross site scripting vulnerability.
network
sap CWE-79
3.5
3.5