OpenCVE

Filtered by vendor Sap Subscriptions

Filtered by product Commerce Backoffice Subscriptions

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2024-45278	2 Sap, Sap Se	2 Commerce Backoffice, Sap Commerce Backoffice	2024-11-14	5.4 Medium
SAP Commerce Backoffice does not sufficiently encode user controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability. After successful exploitation, an attacker can cause limited impact on confidentiality and integrity of the application.
CVE-2024-41735	1 Sap	1 Commerce Backoffice	2024-09-12	5.4 Medium
SAP Commerce Backoffice does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability causing low impact on confidentiality and integrity of the application.

Page 1 of 1.