Vulnerabilities > SAP > Netweaver Java WEB Application > 7.50

DATE CVE VULNERABILITY TITLE RISK
2018-02-14 CVE-2018-2371 Cross-site Scripting vulnerability in SAP Netweaver Java web Application 7.50
The SAML 2.0 service provider of SAP Netweaver AS Java Web Application, 7.50, does not sufficiently encode user controlled inputs, which results in Cross-Site Scripting (XSS) vulnerability.
network
sap CWE-79
4.3
4.3