Description
SAP NetWeaver DevelKnowledge Warehouse is vulnerable to the XSS (cross-site scripting). The SAPIrExtHelp endpoint doesn't sanitize the user's input correctly.
Remediation
Upgrade to the latest version of SAP KW
References
Related Vulnerabilities
WordPress Plugin Powie's WHOIS Domain Check Cross-Site Scripting (0.9.31)
WordPress Plugin WooCommerce Export Orders and More Cross-Site Scripting (2.0.10)
WordPress Plugin Awesome Support-WordPress HelpDesk & Support Cross-Site Scripting (5.8.0)
WordPress Plugin WordPress Comment Rating Cross-Site Scripting (1.5.3)