SAP NetWeaver AS ABAP Business Server Pages Test Application IT00, versions 700, 701, 702, 730, 731, 740, 750, 751, 752, 753, 754, allows an attacker to redirect users to a malicious site due to insufficient URL validation and steal credentials of the victim, leading to URL Redirection vulnerability.
2020-04-14T20:15:15.293
2024-11-21T05:35:18.983
Modified
CVSSv3.1: 6.1 (MEDIUM)
AV:N/AC:M/Au:N/C:P/I:P/A:N
8.6
4.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | sap | netweaver_as_abap_business_server_pages | 700 | Yes |
| Application | sap | netweaver_as_abap_business_server_pages | 701 | Yes |
| Application | sap | netweaver_as_abap_business_server_pages | 702 | Yes |
| Application | sap | netweaver_as_abap_business_server_pages | 730 | Yes |
| Application | sap | netweaver_as_abap_business_server_pages | 731 | Yes |
| Application | sap | netweaver_as_abap_business_server_pages | 740 | Yes |
| Application | sap | netweaver_as_abap_business_server_pages | 750 | Yes |
| Application | sap | netweaver_as_abap_business_server_pages | 751 | Yes |
| Application | sap | netweaver_as_abap_business_server_pages | 752 | Yes |
| Application | sap | netweaver_as_abap_business_server_pages | 753 | Yes |
| Application | sap | netweaver_as_abap_business_server_pages | 754 | Yes |