[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

CVE-2017-9613: Stored Cross-Site Scripting in SAP successfactors

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: CVE-2017-9613: Stored Cross-Site Scripting in SAP successfactors
From: dunstan.pinto@xxxxxxxxx
Date: Thu, 15 Jun 2017 09:07:20 GMT

CVE-2017-9613: Stored Cross-Site Scripting in SAP successfactors

Severity: High

Vendor: SAP

Versions Affected: SAP successfactors - Release build b1702p5e.1190658

Description: Stored Cross-site scripting (XSS) vulnerability in SAP 
Successfactors allows remote authenticated users to inject arbitrary web script 
or HTML via the file upload functionality.

Resolution: SAP has fixed this in Release build b1705.1234962

Prev by Date: [slackware-security] mozilla-firefox (SSA:2017-165-02)
Next by Date: [SECURITY] [DSA 3882-1] request-tracker4 security update
Previous by thread: [slackware-security] mozilla-firefox (SSA:2017-165-02)
Next by thread: [SECURITY] [DSA 3882-1] request-tracker4 security update
Index(es):
- Date
- Thread