Security Advisory

CVE-2023-26457

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-03-14 04:53:30

Last updated 2025-02-27 15:10:48

Assigner sap

State PUBLISHED

Description

SAP Content Server - version 7.53, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability. After successful exploitation, an attacker can read and modify some sensitive information but cannot delete the data.

← Browse all CVEs View on cve.org ↗