Micro Focus Solutions Business Manager versions prior to 11.4 can reflect back HTTP header values.
References
Configurations
History
07 Nov 2023, 03:01
Type | Values Removed | Values Added |
---|---|---|
References | () http://help.serena.com/doc_center/sbm/ver11_4/sbm_release_notes.htm - |
09 Apr 2021, 16:04
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:microfocus:solutions_business_manager:*:*:*:*:*:*:*:* |
Information
Published : 2018-06-21 19:29
Updated : 2023-12-10 12:30
NVD link : CVE-2018-7680
Mitre link : CVE-2018-7680
CVE.ORG link : CVE-2018-7680
JSON object : View
Products Affected
microfocus
- solutions_business_manager
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')