SAP Fiori 1.0 for SAP ERP HCM (Approve Leave Request, version 2) application allows an attacker to trick an authenticated user to send unintended request to the web server. This vulnerability is due to insufficient CSRF protection.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: sap
Published: 2018-10-09T13:00:00
Updated: 2024-08-05T04:21:34.147Z
Reserved: 2017-12-15T00:00:00
Link: CVE-2018-2474

No data.

Status : Modified
Published: 2018-10-09T13:29:02.133
Modified: 2024-11-21T04:03:52.907
Link: CVE-2018-2474

No data.