The SAML 2.0 service provider of SAP Netweaver AS Java Web Application, 7.50, does not sufficiently encode user controlled inputs, which results in Cross-Site Scripting (XSS) vulnerability.
CPE | Name | Operator | Version |
---|---|---|---|
netweaver_java_web_application | eq | 7.50 |