CVE Published: 15/10/2020 |
CVE Updated: 04/08/2024 |
CVE Year: 2020 Source: sap |
Vendor: SAP SE |
Product: SAP Business Planning and Consolidation Status : PUBLISHED
CVE-2020-6368 Description
SAP Business Planning and Consolidation, versions - 750, 751, 752, 753, 754, 755, 810, 100, 200, can be abused by an attacker, allowing them to modify displayed application content without authorization, and to potentially obtain authentication information from other legitimate users, leading to Cross Site Scripting.