Vulnerabilities (CVE)

Vendor filter

Sap Subscribe

Product filter

Financial Consolidation Subscribe

Filter

2 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-0370 1 Sap 1 Financial Consolidation 2019-10-11 6.4
Due to missing input validation, SAP Financial Consolidation, before versions 10.0 and 10.1, enables an attacker to use crafted input to interfere with the structure of the surrounding query leading to XPath Injection.
CVE-2019-0369 1 Sap 1 Financial Consolidation 2019-10-10 3.5
SAP Financial Consolidation, before versions 10.0 and 10.1, does not sufficiently encode user-controlled inputs, which allows an attacker to execute scripts by uploading files containing malicious scripts, leading to reflected cross site...