GHSA-mc4p-q6wc-4cwx
GitHub Security Advisory
⚠ Unreviewed
MODERATE
Has CVE
Advisory Details
Under certain conditions, NetWeaver Enterprise Portal, versions - 7.30, 7.31, 7.40, 7.50, does not sufficiently encode URL parameters. An attacker can craft a malicious link and send it to a victim. A successful attack results in Reflected Cross-Site Scripting (XSS) vulnerability.
Related CVEs
Key Information
5.0
/10
Dataset
Last updated: June 26, 2025 6:25 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.