Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Commerce_backoffice
(Sap)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 2 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-10-08 | CVE-2024-45278 | SAP Commerce Backoffice does not sufficiently encode user controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability. After successful exploitation, an attacker can cause limited impact on confidentiality and integrity of the application. | Commerce_backoffice | 5.4 | ||
| 2024-08-13 | CVE-2024-41735 | SAP Commerce Backoffice does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability causing low impact on confidentiality and integrity of the application. | Commerce_backoffice | 5.4 |