Cross-Site Scripting Vulnerability in SAP CRM Java Administration Console
CVE-2017-15294
6.1MEDIUM
What is CVE-2017-15294?
The Java administration console within SAP CRM is susceptible to cross-site scripting (XSS) attacks, potentially allowing attackers to execute malicious scripts in the context of user sessions. This vulnerability emphasizes the need for proper input validation and output encoding to safeguard sensitive user data and maintain system integrity.