mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-07 11:06:19 +00:00
914 B
914 B
CVE-2020-6206
Description
SAP Cloud Platform Integration for Data Services, version 1.0, allows user inputs to be reflected as error or warning massages. This could mislead the victim to follow malicious instructions inserted by external attackers, leading to Cross Site Request Forgery.
POC
Reference
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=540935305
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=540935305
Github
No PoCs found on GitHub currently.