| Max CVSS | 5.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2005-3635 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in SAP Web Application Server (WAS) 6.10 through 7.00 allow remote attackers to inject arbitrary web script or HTML via (1) the sap-syscmd in sap-syscmd and (2) the BspApplication field in the SYSTE
|
11-07-2017 - 01:33 | 16-11-2005 - 21:22 | |
| CVE-2005-3636 | 4.3 |
Cross-site scripting (XSS) vulnerability in SAP Web Application Server (WAS) 6.10 allows remote attackers to inject arbitrary web script or HTML via Error Pages.
|
11-07-2017 - 01:33 | 16-11-2005 - 21:22 | |
| CVE-2005-3633 | 5.0 |
HTTP response splitting vulnerability in frameset.htm in SAP Web Application Server (WAS) 6.10 through 7.00 allows remote attackers to inject arbitrary HTML headers via the sap-exiturl parameter.
|
11-07-2017 - 01:33 | 16-11-2005 - 21:22 | |
| CVE-2005-3634 | 5.0 |
frameset.htm in the BSP runtime in SAP Web Application Server (WAS) 6.10 through 7.00 allows remote attackers to log users out and redirect them to arbitrary web sites via a close command in the sap-sessioncmd parameter and a URL in the sap-exiturl p
|
11-07-2017 - 01:33 | 16-11-2005 - 21:22 |