GHSA-57w4-jf74-fc8m
GitHub Security Advisory
⚠ Unreviewed
MODERATE
Has CVE
Advisory Details
Due to insufficient input validation, SAP Financial Consolidation - version 1010, allows an authenticated attacker to inject malicious script when running a common query in the Web Administration Console. On successful exploitation, an attacker can view or modify information causing a limited impact on confidentiality, integrity and availability of the application.
Related CVEs
Key Information
5.0
/10
Dataset
Last updated: September 8, 2025 6:31 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.