QwikSec

Security Database

CVE

CWE

Training

CVE-2014-8314

Published: Oct 16, 2014

Modified: Aug 6, 2024

PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in SAP HANA Developer Edition Revision 70 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors to (1) epm/admin/DataGen.xsjs or (2) epm/services/multiply.xsjs in the democontent.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20141008 [Onapsis Security Advisory 2014-027] SAP HANA Multiple Reflected Cross Site Scripting Vulnerabilities

mailing-list

x_refsource_FULLDISC

20141008 [Onapsis Security Advisory 2014-027] SAP HANA Multiple Reflected Cross Site Scripting Vulnerabilities

mailing-list

x_refsource_BUGTRAQ

https://service.sap.com/sap/support/notes/2009696

x_refsource_CONFIRM

vdb-entry

x_refsource_BID

http://packetstormsecurity.com/files/128598/SAP-HANA-Reflective-Cross-Site-Scripting.html

x_refsource_MISC

http://scn.sap.com/docs/DOC-55451

x_refsource_CONFIRM

sap-hana--multiple-xss(96878)

vdb-entry

x_refsource_XF

http://www.onapsis.com/resources/get.php?resid=adv_onapsis-2014-027

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.