"value":"SAP NWBC for HTML - versions SAP_UI 754, SAP_UI 755, SAP_UI 756, SAP_UI 757, SAP_UI 758, SAP_BASIS 700, SAP_BASIS 701, SAP_BASIS 702, SAP_BASIS 731, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability. An unauthenticated attacker can inject malicious javascript to cause limited impact to confidentiality and integrity of the application data after successful exploitation.\n\n"
}
]
},
"problemtype":{
"problemtype_data":[
{
"description":[
{
"lang":"eng",
"value":"CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
"cweId":"CWE-79"
}
]
}
]
},
"affects":{
"vendor":{
"vendor_data":[
{
"vendor_name":"SAP_SE",
"product":{
"product_data":[
{
"product_name":"SAP NetWeaver Business Client for HTML",
