Back to search
CVE-2005-3635
Published: Nov 16, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple cross-site scripting (XSS) vulnerabilities in SAP Web Application Server (WAS) 6.10 through 7.00 allow remote attackers to inject arbitrary web script or HTML via (1) the sap-syscmd in sap-syscmd and (2) the BspApplication field in the SYSTEM PUBLIC test application.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20717
vdb-entry
x_refsource_OSVDB
162
third-party-advisory
x_refsource_SREASON
sap-fameset-systempublic-xss(23027)
vdb-entry
x_refsource_XF
15361
vdb-entry
x_refsource_BID
17515
third-party-advisory
x_refsource_SECUNIA
1015174
vdb-entry
x_refsource_SECTRACK
ADV-2005-2361
vdb-entry
x_refsource_VUPEN
20716
vdb-entry
x_refsource_OSVDB
20051109 CYBSEC - Security Advisory: Multiple XSS in SAP WAS
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now