Vulnerabilities > SAP > Netweaver Java WEB Application > Medium

DATE CVE VULNERABILITY TITLE RISK
2018-02-14 CVE-2018-2371 Cross-site Scripting vulnerability in SAP Netweaver Java web Application 7.50
The SAML 2.0 service provider of SAP Netweaver AS Java Web Application, 7.50, does not sufficiently encode user controlled inputs, which results in Cross-Site Scripting (XSS) vulnerability.
network
low complexity
sap CWE-79
6.1
6.1