CVE-2025-42920 | SAP Supplier Relationship Management 701/702/713/714/SRM_SERVER 700 Link cross site scripting

Inserito da Angelo Barbosa | Set 9, 2025 | CVE

A vulnerability described as problematic has been identified in SAP Supplier Relationship Management 701/702/713/714/SRM_SERVER 700. This affects an unknown part of the component Link Handler. The manipulation results in cross site scripting.

This vulnerability is known as CVE-2025-42920. It is possible to launch the attack remotely. No exploit is available.

Applying a patch is advised to resolve this issue.

CVE-2025-42920 | SAP Supplier Relationship Management 701/702/713/714/SRM_SERVER 700 Link cross site scripting

Post correlati

CVE-2024-13487 | villatheme CURCY Plugin up to 2.2.5 on WordPress Shortcode get_products_price code injection

CVE-2024-48955 | NetAdmin 4.0.30319 improper authorization

CVE-2025-54125 | xwiki-platform up to 16.4.6/16.10.4/17.1.x templates/xml.vm exposure of private personal information to an unauthorized actor (GHSA-57q2-6cp4-9mq3)

CVE-2024-40892 | Firewalla Box Software up to 1.978 BLE weak credentials