SAP Business Warehouse - Business Planning and Simulation application does not sufficiently encode user-controlled inputs, resulting in Stored Cross-Site Scripting (XSS) vulnerability. This vulnerability allows users to modify website content and on successful exploitation, an attacker can cause low impact to the confidentiality and integrity of the application.
2024-07-09T05:15:12.507
2025-10-28T18:41:39.603
Analyzed
CVSSv3.1: 5.4 (MEDIUM)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | sap | business_warehouse | 700 | Yes |
| Application | sap | business_warehouse | 701 | Yes |
| Application | sap | business_warehouse | 702 | Yes |
| Application | sap | business_warehouse | 730 | Yes |
| Application | sap | business_warehouse | 731 | Yes |
| Application | sap | business_warehouse | 740 | Yes |
| Application | sap | business_warehouse | 750 | Yes |
| Application | sap | business_warehouse | 751 | Yes |
| Application | sap | business_warehouse | 752 | Yes |
| Application | sap | business_warehouse | 753 | Yes |
| Application | sap | business_warehouse | 754 | Yes |
| Application | sap | business_warehouse | 755 | Yes |
| Application | sap | business_warehouse | 756 | Yes |
| Application | sap | business_warehouse | 757 | Yes |
| Application | sap | business_warehouse | 758 | Yes |
| Application | sap | business_warehouse_virtual_comp | 701 | Yes |