CVE-2025-0057

Common Vulnerabilities and Exposures

Last Post by kajal 2 days ago

1 Posts

1 Users

0 Reactions

10 Views

RSS

kajal

(@kajal)

Posts: 356

Reputable Member

Topic starter

Description

SAP NetWeaver AS JAVA (User Admin Application) is vulnerable to stored cross site scripting vulnerability. An attacker posing as an admin can upload a photo with malicious JS content. When a victim visits the vulnerable component, the attacker can read and modify information within the scope of victim's web browser.

References

https://me.sap.com/notes/3514421

https://url.sap/sapsecuritypatchday

https://nvd.nist.gov/vuln/detail/CVE-2025-0057

Posted : 30/01/2026 8:21 pm

Forum Icons: Forum contains no unread posts Forum contains unread posts

Topic Icons: Not Replied Replied Active Hot Sticky Unapproved Solved Private Closed