Description
SAP NetWeaver DevelKnowledge Warehouse is vulnerable to the XSS (cross-site scripting). The SAPIrExtHelp endpoint doesn't sanitize the user's input correctly.
Remediation
Upgrade to the latest version of SAP KW
References
Related Vulnerabilities
WordPress Plugin XEN Carousel Multiple Cross-Site Scripting Vulnerabilities (0.12.2)
WordPress Plugin EWWW Image Optimizer Cross-Site Scripting (2.0.1)
WordPress Plugin cformsII 'lib_ajax.php' Multiple Cross-Site Scripting Vulnerabilities (13.1)
WordPress Plugin WP-Live Chat by 3CX Cross-Site Scripting (8.1.9)
WordPress Plugin WP Fastest Cache Cross-Site Scripting (0.8.5.5)