cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2023-31407,https://securityvulnerability.io/vulnerability/CVE-2023-31407,Cross-Site Scripting (XSS) vulnerability in SAP Business Planning and Consolidation,"SAP Business Planning and Consolidation - versions 740, 750, allows an authorized attacker to upload a malicious file, resulting in Cross-Site Scripting vulnerability. After successful exploitation, an attacker can cause limited impact on confidentiality and integrity of the application.

",SAP,SAP Business Planning and Consolidation,5.4,MEDIUM,0.000699999975040555,false,false,false,false,,false,false,2023-05-09T02:15:00.000Z,0
CVE-2020-6368,https://securityvulnerability.io/vulnerability/CVE-2020-6368,,"SAP Business Planning and Consolidation, versions - 750, 751, 752, 753, 754, 755, 810, 100, 200, can be abused by an attacker, allowing them to modify displayed application content without authorization, and to potentially obtain authentication information from other legitimate users, leading to Cross Site Scripting.",SAP,SAP Business Planning And Consolidation,5.4,MEDIUM,0.000539999979082495,false,false,false,false,,false,false,2020-10-15T01:54:18.000Z,0