cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2023-42479,https://securityvulnerability.io/vulnerability/CVE-2023-42479,Cross-Site Scripting (XSS) vulnerability in SAP Biller Direct,"An unauthenticated attacker can embed a hidden access to a Biller Direct URL in a frame which, when loaded by the user, will submit a cross-site scripting request to the Biller Direct system. This can result in the disclosure or modification of non-sensitive information.

",SAP,SAP Biller Direct,6.1,MEDIUM,0.000750000006519258,false,false,false,false,,false,false,2023-12-12T01:15:00.000Z,0
CVE-2022-41207,https://securityvulnerability.io/vulnerability/CVE-2022-41207,,"SAP Biller Direct allows an unauthenticated attacker to craft a legitimate looking URL. When clicked by an unsuspecting victim, it will use an unsensitized parameter to redirect the victim to a malicious site of the attacker's choosing which can result in disclosure or modification of the victim's information.",SAP,SAP Biller Direct,6.1,MEDIUM,0.0008299999753944576,false,false,false,false,,false,false,2022-11-08T00:00:00.000Z,0