CVE-2019-0275

Published: 2019-03-12T22:29Z

Last Modified: 2024-11-21T04:16Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

SAML 1.1 SSO Demo Application in SAP NetWeaver Java Application Server (J2EE-APPS), versions 7.10 to 7.11, 7.20, 7.30, 7.31, 7.40 and 7.50, does not sufficiently encode user-controlled inputs, which results in cross-site scripting (XSS) vulnerability. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt