GHSA-rh37-q3m6-762g
GitHub Security Advisory
⚠ Unreviewed
MODERATE
Has CVE
Advisory Details
Applications based on SAP GUI for HTML in SAP NetWeaver AS ABAP - versions 7.89, 7.93, do not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability. A successful attack can allow a malicious attacker to access and modify data through their ability to execute code in a user’s browser. There is no impact on the availability of the system
Related CVEs
Key Information
5.0
/10
Dataset
Last updated: September 7, 2025 6:30 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.