CVE-2008-1846 in NetWeaver信息

摘要

由 VulDB • 2026-06-13

SAP NetWeaver 版本在 7.0 SP15 之前,其默认配置未启用“始终使用安全 HTML 编辑器”(即 Editor Security 或 Secure Editing)参数,这使得远程攻击者可以通过输入文件反馈来实施跨站脚本 (XSS) 攻击。

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

来源

Want to stay up to date on a daily basis?

Enable the mail alert feature now!