CVE Published: 10/07/2019 |
CVE Updated: 04/08/2024 |
CVE Year: 2019 Source: sap |
Vendor: SAP SE |
Product: OpenUI5 Status : PUBLISHED
CVE-2019-0281 Description
SAPUI5 and OpenUI5, before versions 1.38.39, 1.44.39, 1.52.25, 1.60.6 and 1.63.0, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.