Name of the Vulnerable Software and Affected Versions SAP NetWeaver (affected versions not specified)

Description The issue is related to the /com.sap.portal.design.datamigration.LogPortalComponent component of the SAP NetWeaver platform, which is vulnerable due to insufficient protection of the web page structure, allowing for reflected cross-site scripting. This could enable a remote attacker to inject arbitrary HTML tags, including JavaScript scripts, into a page using the user's browser.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.