Stored Cross-site scripting (XSS) vulnerability in SAP SuccessFactors file upload functionality

Stored Cross-site scripting (XSS) vulnerability in SAP SuccessFactors file upload functionality

CVE-2017-9613 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

Stored Cross-site scripting (XSS) vulnerability in SAP SuccessFactors before b1705.1234962 allows remote authenticated users to inject arbitrary web script or HTML via the file upload functionality.

Learn more about our Web App Pen Testing.