CVE-2009-2932

Published: Aug 21, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in uddiclient/process in the UDDI client in SAP NetWeaver Application Server (Java) 7.0 allows remote attackers to inject arbitrary web script or HTML via the TModel Key field.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

57000

vdb-entry

x_refsource_OSVDB

http://www.dsecrg.com/pages/vul/show.php?id=133

x_refsource_MISC

netweaver-uddi-xss(52429)

vdb-entry

x_refsource_XF

20090812 [DSECRG-09-033] SAP Netweaver UDDI - XSS Security Vulnerability

mailing-list

x_refsource_BUGTRAQ

1022731

vdb-entry

x_refsource_SECTRACK

https://service.sap.com/sap/support/notes/1322098

x_refsource_MISC

36034

vdb-entry

x_refsource_BID

36228

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2009-2932

Description

Affected Products

References